mozilla
3,621 tracked vulnerabilities.
CVE-2016-9073
HIGH
Firefox < 50.0 - WebExtension Privilege Escalation via Privileged URL Loading
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2016-9072
HIGH
Firefox < 50.0 - Unauthenticated Sandbox Bypass for 64-bit NPAPI Plugins on Windows
Jun 11, 2018
CVSS 7.5
EPSS 0.01
CVE-2016-9071
MEDIUM
Firefox < 50.0 - Browser History Detection via CSP and HTTP to HTTPS Redirection
Jun 11, 2018
CVSS 5.3
EPSS 0.02
CVE-2016-9070
HIGH
Firefox < 50 - Cross-Origin Protection Bypass via Sidebar Bookmark
Jun 11, 2018
CVSS 8.0
EPSS 0.02
CVE-2016-9068
HIGH
Firefox < 50.0 - Use-After-Free in Web Animations Timeline Handling
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2016-9067
MEDIUM
Firefox < 50.0 - Use-After-Free during DOM Operations
Jun 11, 2018
CVSS 6.5
EPSS 0.02
CVE-2016-9066
HIGH
Thunderbird <45.5-Firefox <50 - Buffer Overflow
Jun 11, 2018
CVSS 7.5
EPSS 0.12
CVE-2016-9065
HIGH
Firefox < 50.0 for Android - Location Bar Spoofing via Fullscreen Mode
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2016-9064
MEDIUM
Firefox ESR < 45.5 & Firefox < 50 - Man-in-the-middle attack
Jun 11, 2018
CVSS 5.9
EPSS 0.01
CVE-2016-9063
CRITICAL
Firefox < 50 - Integer Overflow in Expat XML Parser
Jun 11, 2018
CVSS 9.8
EPSS 0.06
CVE-2016-9062
LOW
Firefox < 50.0 - Exposure of Sensitive Information via Private Browsing Metadata
Jun 11, 2018
CVSS 3.3
EPSS 0.00
CVE-2016-9061
HIGH
Firefox < 50.0 - Unauthorized API Key Access via Signature-Level Permission
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2016-5299
HIGH
Firefox < 50.0 - AuthToken Interception via Malicious Android Application
Jun 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2016-5298
MEDIUM
Firefox < 50.0 - Favicon and SSL Indicator Spoofing via Page Load Disruption
Jun 11, 2018
CVSS 6.5
EPSS 0.01
CVE-2016-5297
CRITICAL
Firefox < 50 and Firefox ESR < 45.5 - Integer Overflow in JavaScript Argument Length Checking
Jun 11, 2018
CVSS 9.8
EPSS 0.04
CVE-2016-5296
HIGH
Firefox < 45.5.0 - Heap Buffer Overflow via SVG Content Processing
Jun 11, 2018
CVSS 7.5
EPSS 0.04
CVE-2016-5295
HIGH
Firefox < 50.0 - Privilege Escalation via Mozilla Maintenance Service
Jun 11, 2018
CVSS 7.8
EPSS 0.00
CVE-2016-5294
MEDIUM
Firefox < 45.5.0 and Thunderbird < 45.5.0 - Arbitrary File Write via Updater Working Directory
Jun 11, 2018
CVSS 5.5
EPSS 0.00
CVE-2016-5293
MEDIUM
Firefox < 50 - Arbitrary Local File Write via Updater Log File Hardlink
Jun 11, 2018
CVSS 5.5
EPSS 0.00
CVE-2016-5292
MEDIUM
Firefox < 50.0 - Denial of Service via Malicious URL Parsing
Jun 11, 2018
CVSS 6.5
EPSS 0.02
CVE-2016-5291
MEDIUM
Firefox < 50 and Firefox ESR < 45.5 - Same-Origin Policy Bypass via Local Shortcut Files
Jun 11, 2018
CVSS 5.5
EPSS 0.00
CVE-2016-5290
CRITICAL
Firefox < 50 and Firefox ESR < 45.5 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2016-5289
CRITICAL
Firefox < 50.0 - Memory Corruption and Remote Code Execution
Jun 11, 2018
CVSS 9.8
EPSS 0.02
CVE-2016-5288
MEDIUM
Firefox < 49.0.2 - Exposure of Sensitive Information via HTTP Cache
Jun 11, 2018
CVSS 5.9
EPSS 0.02
CVE-2016-5287
CRITICAL
Firefox < 49.0.2 - Use-After-Free during Actor Destruction with Service Workers
Jun 11, 2018
CVSS 9.8
EPSS 0.02
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters