mozilla

3,619 tracked vulnerabilities.

CVE-2026-4706 HIGH
Incorrect boundary conditions in the Graphics: Canvas2D component
Mar 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4705 CRITICAL
Undefined behavior in the WebRTC: Signaling component
Mar 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-4704 HIGH
Denial-of-service in the WebRTC: Signaling component
Mar 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4702 CRITICAL
JIT miscompilation in the JavaScript Engine component
Mar 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-4701 CRITICAL
Use-after-free in the JavaScript Engine component
Mar 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-4700 CRITICAL
Mitigation bypass in the Networking: HTTP component
Mar 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-4699 HIGH
Incorrect boundary conditions in the Layout: Text and Fonts component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4698 CRITICAL
JIT miscompilation in the JavaScript Engine: JIT component
Mar 24, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-4697 HIGH
Incorrect boundary conditions in the Audio/Video: Web Codecs component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4696 CRITICAL
Use-after-free in the Layout: Text and Fonts component
Mar 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-4695 HIGH
Incorrect boundary conditions in the Audio/Video: Web Codecs component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4694 HIGH
Incorrect boundary conditions, integer overflow in the Graphics component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4693 HIGH
Incorrect boundary conditions in the Audio/Video: Playback component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4692 CRITICAL
Sandbox escape in the Responsive Design Mode component
Mar 24, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-4691 CRITICAL
Use-after-free in the CSS Parsing and Computation component
Mar 24, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-4690 HIGH
Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component
Mar 24, 2026
CVSS 8.6
EPSS 0.01
CVE-2026-4689 CRITICAL
Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component
Mar 24, 2026
CVSS 10.0
EPSS 0.01
CVE-2026-4688 CRITICAL
Sandbox escape due to use-after-free in the Disability Access APIs component
Mar 24, 2026
CVSS 10.0
EPSS 0.01
CVE-2026-4687 HIGH
Sandbox escape due to incorrect boundary conditions in the Telemetry component
Mar 24, 2026
CVSS 8.6
EPSS 0.01
CVE-2026-4686 HIGH
Incorrect boundary conditions in the Graphics: Canvas2D component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4685 HIGH
Incorrect boundary conditions in the Graphics: Canvas2D component
Mar 24, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4684 HIGH
Race condition, use-after-free in the Graphics: WebRender component
Mar 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-3847 HIGH
Firefox <148.0.2 - Memory Corruption
Mar 10, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-3846 MEDIUM
Firefox < 148.0.2 - Same-Origin Policy Bypass in CSS Parsing and Computation
Mar 10, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-3845 HIGH
Firefox for Android <148.0.2 - Buffer Overflow
Mar 10, 2026
CVSS 8.8
EPSS 0.00