mozilla

3,621 tracked vulnerabilities.

CVE-2016-2831 HIGH
Canonical Ubuntu Linux < 46.0.1 - Security Feature Bypass
Jun 13, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2829 MEDIUM
Opensuse Leap < 46.0.1 - Improper Access Control
Jun 13, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-2828 HIGH
Canonical Ubuntu Linux < 46.0.1 - Use After Free
Jun 13, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-2826 HIGH
Firefox < 47.0 and Firefox ESR 45.x < 45.2 - Privilege Escalation via MAR File Tampering
Jun 13, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-2825 MEDIUM
Canonical Ubuntu Linux < 46.0.1 - Improper Access Control
Jun 13, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-2824 HIGH
Firefox < 47.0 and Firefox ESR < 45.2 - Out-of-Bounds Write via WebGL Shader Array Access
Jun 13, 2016
CVSS 8.8
EPSS 0.02
CVE-2016-2822 MEDIUM
Debian Linux < 46.0.1 - Improper Access Control
Jun 13, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-2821 HIGH
Firefox < 47.0 - Use-After-Free in Contenteditable DOM Element Deletion
Jun 13, 2016
CVSS 7.5
EPSS 0.03
CVE-2016-2819 HIGH
Opensuse Leap < 46.0.1 - Memory Corruption
Jun 13, 2016
CVSS 8.8
EPSS 0.24
CVE-2016-2818 HIGH
Firefox < 47.0 and Firefox ESR 45.x < 45.2 - Remote Code Execution via Memory Corruption
Jun 13, 2016
CVSS 8.8
EPSS 0.04
CVE-2016-2815 HIGH
Firefox < 47.0 - Remote Code Execution via Browser Engine Memory Corruption
Jun 13, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-0718 CRITICAL
Expat - Buffer Overflow
May 26, 2016
CVSS 9.8
EPSS 0.14
CVE-2016-2820 MEDIUM
Firefox < 45.0.2 - Improper Access Control in Health Reports
Apr 30, 2016
CVSS 4.3
EPSS 0.01
CVE-2016-2817 MEDIUM
Firefox < 45.0.2 - Universal Cross-Site Scripting via WebExtension Sandbox Principal Inheritance
Apr 30, 2016
CVSS 5.4
EPSS 0.01
CVE-2016-2816 MEDIUM
Firefox < 45.0.2 - Content Security Policy Bypass via multipart/x-mixed-replace
Apr 30, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-2814 HIGH
Firefox < 45.0.2 - Remote Code Execution via Crafted CENC Offsets
Apr 30, 2016
CVSS 8.8
EPSS 0.04
CVE-2016-2813 MEDIUM
Firefox < 45.0.2 - Unauthorized Sensitive Information Exposure via JavaScript Orientation and Motion Data Access
Apr 30, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-2812 HIGH
Firefox < 45.0.2 - Remote Code Execution via Service Worker Race Condition
Apr 30, 2016
CVSS 7.5
EPSS 0.02
CVE-2016-2811 HIGH
Firefox < 45.0.2 - Use-After-Free in ServiceWorkerInfo BeginReading Method
Apr 30, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-2810 MEDIUM
Firefox < 45.0.2 - Signature Access Bypass via Content-Provider Permissions
Apr 30, 2016
CVSS 5.0
EPSS 0.01
CVE-2016-2809 MEDIUM
Firefox < 45.0.2 - Arbitrary File Deletion via Maintenance Service Updater
Apr 30, 2016
CVSS 5.5
EPSS 0.02
CVE-2016-2808 HIGH
Firefox < 45.0.2 - Remote Code Execution via JavaScript Watch Implementation
Apr 30, 2016
CVSS 7.5
EPSS 0.02
CVE-2016-2807 HIGH
Firefox < 46.0 - Memory Corruption
Apr 30, 2016
CVSS 8.8
EPSS 0.05
CVE-2016-2806 HIGH
Debian Linux < 45.0.2 - Memory Corruption
Apr 30, 2016
CVSS 8.8
EPSS 0.05
CVE-2016-2805 HIGH
Firefox ESR 38.x - Remote Code Execution via Memory Corruption
Apr 30, 2016
CVSS 8.8
EPSS 0.05