mozilla

3,565 tracked vulnerabilities.

CVE-2014-1496 MEDIUM
Mozilla Firefox < 28.0 - Privilege Escalation via Modified Mar Contents During Update
Mar 19, 2014
CVSS 5.5
EPSS 0.00
CVE-2014-1494
SeaMonkey < 2.25 - Remote Code Execution or Denial of Service
Mar 19, 2014
EPSS 0.01
CVE-2014-1493 CRITICAL
Mozilla Firefox < 28.0 - Remote Code Execution via Browser Engine Memory Corruption
Mar 19, 2014
CVSS 9.8
EPSS 0.01
CVE-2014-2018
Mozilla Thunderbird <17.0.8 & SeaMonkey <2.20 - XSS
Feb 17, 2014
EPSS 0.01
CVE-2014-1491
Mozilla Network Security Services < 3.15.4 - Inadequate Encryption Strength in Diffie-Hellman Key Exchange
Feb 06, 2014
EPSS 0.01
CVE-2014-1490
Mozilla Firefox < 24.3 - Use-After-Free via Session Ticket Replacement in Resumption Handshake
Feb 06, 2014
EPSS 0.02
CVE-2014-1489
Oracle Solaris < 26.0 - Access Control
Feb 06, 2014
EPSS 0.01
CVE-2014-1488
Mozilla Firefox <27.0 & SeaMonkey <2.24 - RCE
Feb 06, 2014
EPSS 0.01
CVE-2014-1487 HIGH
Firefox < 27.0 - Origin Validation Error via Web Workers Error Messages
Feb 06, 2014
CVSS 7.5
EPSS 0.01
CVE-2014-1486 CRITICAL
Firefox < 27.0 - Remote Code Execution via imgRequestProxy Use-After-Free
Feb 06, 2014
CVSS 9.8
EPSS 0.11
CVE-2014-1485
Mozilla Firefox <27.0 & SeaMonkey <2.24 - XSS
Feb 06, 2014
EPSS 0.01
CVE-2014-1484
Firefox < 27.0 - Sensitive Information Exposure via Android System Log
Feb 06, 2014
EPSS 0.01
CVE-2014-1483
Mozilla Firefox <27.0 & SeaMonkey <2.24 - CSRF
Feb 06, 2014
EPSS 0.00
CVE-2014-1482 HIGH
Firefox < 27.0 - Out-of-bounds Write via Crafted Image Data
Feb 06, 2014
CVSS 8.8
EPSS 0.03
CVE-2014-1481 HIGH
Mozilla Firefox < 27.0 - Window Object Restriction Bypass via Native Getter Method Inconsistency
Feb 06, 2014
CVSS 7.5
EPSS 0.03
CVE-2014-1480
Mozilla Firefox <27.0 & SeaMonkey <2.24 - CSRF
Feb 06, 2014
EPSS 0.01
CVE-2014-1479 HIGH
Mozilla Firefox <27 - Info Disclosure
Feb 06, 2014
CVSS 7.5
EPSS 0.01
CVE-2014-1478
Firefox < 27.0 and SeaMonkey < 2.24 - Out-of-bounds Write in Browser Engine
Feb 06, 2014
EPSS 0.01
CVE-2014-1477 CRITICAL
Firefox < 27.0 - Remote Code Execution or Denial of Service
Feb 06, 2014
CVSS 9.8
EPSS 0.01
CVE-2013-4227 HIGH
Mozilla Persona 7.x-1.0-7.x-1.10 - Cross-Site Request Forgery via Non-String Security Token
Feb 18, 2020
CVSS 8.8
EPSS 0.00
CVE-2013-5594 MEDIUM
Mozilla Firefox <25 - Info Disclosure
Feb 18, 2020
CVSS 4.3
EPSS 0.00
CVE-2013-1689 MEDIUM
Firefox < 19.0.2 - Denial of Service via Event Handling with Frames
Dec 10, 2019
CVSS 6.5
EPSS 0.00
CVE-2013-6674
SeaMonkey < 2.20 - Cross-Site Scripting via Data URL in IFRAME
Feb 17, 2014
EPSS 0.48
CVE-2013-6167
Firefox < 27.0 - Cross-Site Request Forgery via Malformed Cookie Header
Feb 15, 2014
EPSS 0.00
CVE-2013-1740
Mozilla Network Security Services < 3.15.4 - SSL Server Spoofing via TLS False Start
Jan 18, 2014
EPSS 0.01
Products
firefox 3,130 thunderbird 1,729 seamonkey 704 firefox_esr 488 Firefox 387 Thunderbird 359 thunderbird_esr 228 bugzilla 145 mozilla 108 network_security_services 50 Firefox ESR 44 mozilla_suite 27 firefox_focus 20 firefox_mobile 20 Firefox for iOS 19 focus 15 firefox_os 14 nss 6 Focus for iOS 5 bleach 5 bonsai 4 camino 4 vpn 4 convict 3 netscape_portable_runtime 3 geckodriver 2 mozjpeg 2 nunjucks 2 pollbot 2 webthings_gateway 2
Quick Filters
Critical CVEs With Exploits In CISA KEV