Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / mozilla

mozilla

3,564 tracked vulnerabilities.

CVE-2026-2778 CRITICAL

Firefox < 115.33.0, 140.8-140.*, >=148 - Sandbox Escape via DOM Core & HTML Boundary Condition Mismanagement

CVE-2026-2777 CRITICAL

Firefox <148 - Privilege Escalation

CVE-2026-2776 CRITICAL

Firefox < 115.33.0 and 140.8-148.0 - Sandbox Escape via Telemetry Boundary Condition Flaw

CVE-2026-2775 CRITICAL

Firefox <115.33.0, 115.33-115.*, <148.0, >=148; Thunderbird <140.8.0, 140.8-140.*, >=148 - Authentication Bypass

CVE-2026-2774 CRITICAL

Firefox and Thunderbird - Integer Overflow in Audio/Video Component

CVE-2026-2773 CRITICAL

Firefox <115.33.0, 115.33-115.*, <148.0, >=148; Thunderbird <140.8.0, 140.8-140.*, >=148 - Memory Corruption

CVE-2026-2772 CRITICAL

Firefox < 115.33.0, < 148.0 and Thunderbird < 140.8.0, < 148.0 - Use-After-Free in Audio/Video Playback

CVE-2026-2771 CRITICAL

Firefox <115.33.0, 140.8-140.*, <148.0, >=148; Thunderbird <140.8.0, <148.0, >=148 - Out-of-bounds Read

CVE-2026-2770 CRITICAL

Firefox <115.33.0, 115.33-115.*, <148.0, >=148; Thunderbird <140.8.0, 140.8-140.*, >=148 Use-After-Free

CVE-2026-2769 HIGH

Firefox < 115.33.0, 140.8-140.*, >=148 - Use-After-Free in IndexedDB

CVE-2026-2768 CRITICAL

Firefox < 148 and Firefox ESR < 140.8 - Sandbox Escape via IndexedDB Storage

CVE-2026-2767 CRITICAL

Firefox < 148.0 and Firefox ESR < 140.8.0 - Use-After-Free in JavaScript WebAssembly Component

CVE-2026-2766 CRITICAL

Firefox < 148 and Firefox ESR < 140.8 - Use-After-Free in JavaScript Engine JIT

CVE-2026-2765 CRITICAL

Firefox < 148.0 and < 140.8.0 - Use-After-Free in JavaScript Engine

CVE-2026-2764 CRITICAL

Firefox <148 - Use After Free

CVE-2026-2763 CRITICAL

Firefox < 115.33.0, < 148.0 and Thunderbird < 140.8.0, < 148.0 - Use-After-Free in JavaScript Engine

CVE-2026-2762 CRITICAL

Firefox < 148.0 and < 140.8.0 - Integer Overflow in JavaScript Standard Library

CVE-2026-2761 CRITICAL

Firefox < 115.33.0, < 148.0 and Thunderbird < 140.8.0, < 148.0 - Sandbox Escape in WebRender Component

CVE-2026-2760 CRITICAL

Firefox <115.33.0, 115.33-115.*, <148.0, >=148; Thunderbird <140.8.0, >=140.8 <140.*, >=148 Sandbox Escape via WebRender

CVE-2026-2759 CRITICAL

Firefox < 115.33.0, 140.8-140.*, < 148.0 and Thunderbird < 140.8.0, < 148.0 - Denial of Service in ImageLib

CVE-2026-2758 CRITICAL

Firefox < 115.33.0, < 148.0 and Thunderbird < 140.8.0, < 148.0 - Use-After-Free in JavaScript GC

CVE-2026-2757 CRITICAL

Firefox < 115.33.0, < 148.0 and Thunderbird < 140.8.0, < 148.0 - WebRTC Audio/Video Boundary Error

CVE-2026-2634 CRITICAL

Firefox for iOS < 147.4 - Address Bar Spoofing via Desynchronization

CVE-2026-2447 HIGH

Firefox < 115.32.1, 140.7.1-140.*, < 147.0.4 and Thunderbird < 140.7.2, 147.0.2 - Heap-based Buffer Overflow in libvpx

CVE-2026-2032 MEDIUM

Firefox < 147.2.1 and Firefox for iOS >= 147.2.1 - Address Bar Spoofing via New Tab Page Loading Interruption

Previous Page 8 of 143 Next

Products

firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 18 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy