mozilla

3,621 tracked vulnerabilities.

CVE-2017-7805 HIGH
Firefox < 56 and ESR < 52.4 - Use-After-Free in TLS 1.2 Handshake Hash Calculation
Jun 11, 2018
CVSS 7.5
EPSS 0.03
CVE-2017-7804 HIGH
Firefox < 55 and Thunderbird < 52.3 - Memory Protection Bypass via WindowsDllDetourPatcher Destructor
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-7803 HIGH
Redhat Enterprise Linux Desktop - Improper Privilege Management
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-7802 CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7801 CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7800 CRITICAL
Debian Linux < 55.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7799 MEDIUM
Firefox < 55.0 - Cross-Site Scripting via about:webrtc Page
Jun 11, 2018
CVSS 6.1
EPSS 0.01
CVE-2017-7798 HIGH
Debian Linux < 55.0 - Code Injection
Jun 11, 2018
CVSS 8.8
EPSS 0.02
CVE-2017-7797 HIGH
Firefox < 55.0 - Origin Validation Error via Response Header Name Interning
Jun 11, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-7796 MEDIUM
Firefox < 55.0 - Arbitrary File Deletion via Windows Updater Logger Path Manipulation
Jun 11, 2018
CVSS 4.7
EPSS 0.00
CVE-2017-7794 HIGH
Firefox < 55.0 - Incorrect Default Permissions via Sandbox Broker
Jun 11, 2018
CVSS 7.8
EPSS 0.00
CVE-2017-7793 CRITICAL
Debian Linux < 52.4.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7792 CRITICAL
Debian Linux < 52.3.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7791 MEDIUM
Debian Linux < 52.3.0 - Improper Input Validation
Jun 11, 2018
CVSS 5.3
EPSS 0.02
CVE-2017-7790 HIGH
Firefox < 55.0 - Unprotected User Data Exposure via Crash Reporter Registry Key Handling
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-7789 MEDIUM
Firefox < 55.0 - HTTP Strict Transport Security Bypass via Duplicate STS Headers
Jun 11, 2018
CVSS 5.3
EPSS 0.02
CVE-2017-7788 CRITICAL
Firefox < 55.0 - Content Security Policy Bypass via Sandboxed Iframe with srcdoc
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7787 HIGH
Debian Linux < 52.3 - Information Disclosure
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-7786 CRITICAL
Debian Linux < 52.1.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.04
CVE-2017-7785 CRITICAL
Debian Linux < 52.3.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.04
CVE-2017-7784 CRITICAL
Debian Linux < 52.3.0 - Use After Free
Jun 11, 2018
CVSS 9.8
EPSS 0.04
CVE-2017-7783 HIGH
Firefox < 55.0 - Denial of Service via Long Username in URL Authentication Prompt
Jun 11, 2018
CVSS 7.5
EPSS 0.14
CVE-2017-7782 MEDIUM
Firefox < 55 and Thunderbird < 52.3 - DEP Bypass via WindowsDllDetourPatcher
Jun 11, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-7781 MEDIUM
Firefox < 55.0 - Man-in-the-Middle Shared Secret Computation Flaw via Elliptic Curve Point Addition
Jun 11, 2018
CVSS 5.9
EPSS 0.03
CVE-2017-7780 CRITICAL
Firefox < 55.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.02