mozilla
3,621 tracked vulnerabilities.
CVE-2016-2831
HIGH
Canonical Ubuntu Linux < 46.0.1 - Security Feature Bypass
Jun 13, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2829
MEDIUM
Opensuse Leap < 46.0.1 - Improper Access Control
Jun 13, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-2828
HIGH
Canonical Ubuntu Linux < 46.0.1 - Use After Free
Jun 13, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-2826
HIGH
Firefox < 47.0 and Firefox ESR 45.x < 45.2 - Privilege Escalation via MAR File Tampering
Jun 13, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-2825
MEDIUM
Canonical Ubuntu Linux < 46.0.1 - Improper Access Control
Jun 13, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-2824
HIGH
Firefox < 47.0 and Firefox ESR < 45.2 - Out-of-Bounds Write via WebGL Shader Array Access
Jun 13, 2016
CVSS 8.8
EPSS 0.02
CVE-2016-2822
MEDIUM
Debian Linux < 46.0.1 - Improper Access Control
Jun 13, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-2821
HIGH
Firefox < 47.0 - Use-After-Free in Contenteditable DOM Element Deletion
Jun 13, 2016
CVSS 7.5
EPSS 0.03
CVE-2016-2819
HIGH
Opensuse Leap < 46.0.1 - Memory Corruption
Jun 13, 2016
CVSS 8.8
EPSS 0.24
CVE-2016-2818
HIGH
Firefox < 47.0 and Firefox ESR 45.x < 45.2 - Remote Code Execution via Memory Corruption
Jun 13, 2016
CVSS 8.8
EPSS 0.04
CVE-2016-2815
HIGH
Firefox < 47.0 - Remote Code Execution via Browser Engine Memory Corruption
Jun 13, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-0718
CRITICAL
Expat - Buffer Overflow
May 26, 2016
CVSS 9.8
EPSS 0.14
CVE-2016-2820
MEDIUM
Firefox < 45.0.2 - Improper Access Control in Health Reports
Apr 30, 2016
CVSS 4.3
EPSS 0.01
CVE-2016-2817
MEDIUM
Firefox < 45.0.2 - Universal Cross-Site Scripting via WebExtension Sandbox Principal Inheritance
Apr 30, 2016
CVSS 5.4
EPSS 0.01
CVE-2016-2816
MEDIUM
Firefox < 45.0.2 - Content Security Policy Bypass via multipart/x-mixed-replace
Apr 30, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-2814
HIGH
Firefox < 45.0.2 - Remote Code Execution via Crafted CENC Offsets
Apr 30, 2016
CVSS 8.8
EPSS 0.04
CVE-2016-2813
MEDIUM
Firefox < 45.0.2 - Unauthorized Sensitive Information Exposure via JavaScript Orientation and Motion Data Access
Apr 30, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-2812
HIGH
Firefox < 45.0.2 - Remote Code Execution via Service Worker Race Condition
Apr 30, 2016
CVSS 7.5
EPSS 0.02
CVE-2016-2811
HIGH
Firefox < 45.0.2 - Use-After-Free in ServiceWorkerInfo BeginReading Method
Apr 30, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-2810
MEDIUM
Firefox < 45.0.2 - Signature Access Bypass via Content-Provider Permissions
Apr 30, 2016
CVSS 5.0
EPSS 0.01
CVE-2016-2809
MEDIUM
Firefox < 45.0.2 - Arbitrary File Deletion via Maintenance Service Updater
Apr 30, 2016
CVSS 5.5
EPSS 0.02
CVE-2016-2808
HIGH
Firefox < 45.0.2 - Remote Code Execution via JavaScript Watch Implementation
Apr 30, 2016
CVSS 7.5
EPSS 0.02
CVE-2016-2807
HIGH
Firefox < 46.0 - Memory Corruption
Apr 30, 2016
CVSS 8.8
EPSS 0.05
CVE-2016-2806
HIGH
Debian Linux < 45.0.2 - Memory Corruption
Apr 30, 2016
CVSS 8.8
EPSS 0.05
CVE-2016-2805
HIGH
Firefox ESR 38.x - Remote Code Execution via Memory Corruption
Apr 30, 2016
CVSS 8.8
EPSS 0.05
Products
firefox 3,181
thunderbird 1,773
seamonkey 704
firefox_esr 488
Firefox 434
Thunderbird 403
thunderbird_esr 228
bugzilla 145
mozilla 108
network_security_services 50
Firefox ESR 44
mozilla_suite 27
Firefox for iOS 25
firefox_mobile 23
firefox_focus 20
focus 16
firefox_os 14
Focus for iOS 6
nss 6
bleach 5
bonsai 4
camino 4
vpn 4
convict 3
netscape_portable_runtime 3
geckodriver 2
mozjpeg 2
nunjucks 2
pollbot 2
webthings_gateway 2
Quick Filters