Mozilla
85 CVEsCVE IDSeverityProduct / summaryPublished
CVE-2026-57962
MEDIUM 5.3
Thunderbird — A malicious LDAP server, which a Thunderbird user is configured to query for address-book autocomplete, can st…
2026-07-01
CVE-2026-57963
MEDIUM 6.5
Thunderbird — An attacker who can send HTML chat messages (via Matrix or XMPP) can inject arbitrary styled content, phishing…
2026-07-01
CVE-2026-14241
N/A
Firefox — Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we …
2026-06-30
CVE-2026-12289
HIGH 8.8
Firefox — Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 152, Firefo…
2026-06-16
CVE-2026-12290
HIGH 8.1
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef…
2026-06-16
CVE-2026-12291
HIGH 8.8
Firefox — Use-after-free in the Networking: HTTP component. This vulnerability was fixed in Firefox 152, Firefox ESR 140…
2026-06-16
CVE-2026-12292
HIGH 8.1
Firefox — Incorrect boundary conditions in the Web Audio component. This vulnerability was fixed in Firefox 152, Firefox…
2026-06-16
CVE-2026-12293
CRITICAL 9.8
Firefox — Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152 and Thunderbird …
2026-06-16
CVE-2026-12294
CRITICAL 9.6
Firefox — Sandbox escape in the DOM: Workers component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12,…
2026-06-16
CVE-2026-12295
CRITICAL 9.6
Firefox — Sandbox escape in the DOM: Navigation component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.…
2026-06-16
CVE-2026-12296
CRITICAL 9.6
Firefox — Sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 152, Fir…
2026-06-16
CVE-2026-12297
CRITICAL 9.6
Firefox — Sandbox escape due to incorrect boundary conditions in the Networking component. This vulnerability was fixed …
2026-06-16
CVE-2026-12298
MEDIUM 5.4
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12299
MEDIUM 5.4
Firefox — JIT miscompilation in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152, Firefox ESR…
2026-06-16
CVE-2026-12300
MEDIUM 5.3
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
2026-06-16
CVE-2026-12301
MEDIUM 5.3
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
2026-06-16
CVE-2026-12302
MEDIUM 6.5
Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152, Firefox ESR 140…
2026-06-16
CVE-2026-12303
MEDIUM 4.3
Firefox — Information disclosure due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerabil…
2026-06-16
CVE-2026-12304
CRITICAL 9.1
Firefox — Same-origin policy bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 152, F…
2026-06-16
CVE-2026-12305
HIGH 7.5
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12306
MEDIUM 5.3
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12307
MEDIUM 5.3
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12308
MEDIUM 5.3
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12309
MEDIUM 6.5
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12310
HIGH 7.5
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12311
MEDIUM 4.7
Firefox — Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was f…
2026-06-16
CVE-2026-12312
HIGH 7.5
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12313
MEDIUM 4.7
Firefox — Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was f…
2026-06-16
CVE-2026-12314
HIGH 7.5
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund…
2026-06-16
CVE-2026-12315
CRITICAL 9.1
Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152, Firefox ESR 140…
2026-06-16
CVE-2026-12316
CRITICAL 9.1
Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152 and Thunderbird …
2026-06-16
CVE-2026-12317
HIGH 7.5
Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
2026-06-16
CVE-2026-12318
HIGH 7.3
Firefox — Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 152 a…
2026-06-16
CVE-2026-12319
MEDIUM 6.5
Firefox — Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 152 and Thun…
2026-06-16
CVE-2026-12320
MEDIUM 4.3
Firefox — Information disclosure in the Password Manager component. This vulnerability was fixed in Firefox 152 and Thun…
2026-06-16
CVE-2026-12321
MEDIUM 5.4
Firefox — JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and T…
2026-06-16
CVE-2026-12322
MEDIUM 5.4
Firefox — Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 1…
2026-06-16
CVE-2026-12323
MEDIUM 5.4
Firefox — Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird …
2026-06-16
CVE-2026-12324
HIGH 7.3
Firefox — Incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox …
2026-06-16
CVE-2026-12325
MEDIUM 6.5
Firefox — Denial-of-service in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 152, Firefox ES…
2026-06-16
CVE-2026-12326
HIGH 8.1
Firefox — Memory safety bugs present in Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory co…
2026-06-16
CVE-2026-12327
HIGH 8.1
Firefox — Memory safety bugs present in Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Som…
2026-06-16
CVE-2026-12328
HIGH 8.1
Firefox — Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and …
2026-06-16
CVE-2026-12329
MEDIUM 5.3
Firefox — Memory safety bug fixed in Thunderbird ESR 140.12. This vulnerability was fixed in Firefox ESR 140.12 and Thun…
2026-06-16
CVE-2026-12330
MEDIUM 5.4
Firefox — Incorrect boundary conditions in the Internationalization component. This vulnerability was fixed in Firefox E…
2026-06-16
CVE-2026-53899
MEDIUM 6.5
Firefox For Ios — Firefox for iOS used partial domain matching when attaching cookies to PDF requests, allowing a malicious site…
2026-06-16
CVE-2026-53900
MEDIUM 4.3
Firefox For Ios — Firefox for iOS preserved cookies set on the initial PDF request across cross-origin HTTP redirects in Tempora…
2026-06-16
CVE-2026-11799
HIGH 7.5
Focus For Ios — UXSS in Focus for iOS / Klar Webkit navigation. This vulnerability was fixed in Focus for iOS 151.3.1 and Klar…
2026-06-09
CVE-2026-10701
HIGH 7.5
Firefox — Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3…
2026-06-02
CVE-2026-10702
MEDIUM 4.3
Firefox — JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 151.0.3.
2026-06-02
CVE-2026-9308
MEDIUM 5.4
Firefox For Ios — Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeho…
2026-06-01
CVE-2026-9309
MEDIUM 5.4
Firefox For Ios — Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inje…
2026-06-01
CVE-2026-9078
MEDIUM 5.4
Firefox For Ios — Firefox for iOS displayed specially crafted right-to-left (RTL) and internationalized domain names (IDNs) inco…
2026-05-25
CVE-2026-8706
MEDIUM 6.5
Firefox For Ios — Firefox for iOS hosted Reader mode on an unauthenticated local web server, allowing another application on the…
2026-05-19
CVE-2026-8945
HIGH 7.5
Firefox — Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 151.
2026-05-19
CVE-2026-8946
HIGH 7.5
Firefox — Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefo…
2026-05-19
CVE-2026-8947
HIGH 7.3
Firefox — Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability was fixed in Firefox 151, Firefox E…
2026-05-19
CVE-2026-8948
CRITICAL 9.1
Firefox — Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Th…
2026-05-19
CVE-2026-8949
HIGH 7.5
Firefox — Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.…
2026-05-19
CVE-2026-8950
CRITICAL 9.3
Firefox — Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Fire…
2026-05-19
CVE-2026-8951
MEDIUM 6.5
Firefox — Spoofing issue in the Toolbar component in Firefox for Android. This vulnerability was fixed in Firefox 151.
2026-05-19
CVE-2026-8952
HIGH 8.8
Firefox — Privilege escalation in the Application Update component. This vulnerability was fixed in Firefox 151 and Thun…
2026-05-19
CVE-2026-8953
CRITICAL 9.6
Firefox — Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in …
2026-05-19
CVE-2026-8954
HIGH 7.5
Firefox — Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in …
2026-05-19
CVE-2026-8955
HIGH 8.8
Firefox — Privilege escalation in the DOM: Workers component. This vulnerability was fixed in Firefox 151, Firefox ESR 1…
2026-05-19
CVE-2026-8956
CRITICAL 9.8
Firefox — Integer overflow in the Networking: JAR component. This vulnerability was fixed in Firefox 151, Firefox ESR 14…
2026-05-19
CVE-2026-8957
HIGH 8.8
Firefox — Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefo…
2026-05-19
CVE-2026-8958
HIGH 8.6
Firefox — Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was f…
2026-05-19
CVE-2026-8959
CRITICAL 9.6
Firefox — Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fix…
2026-05-19
CVE-2026-8960
HIGH 7.5
Firefox — Spoofing issue in WebExtensions. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
2026-05-19
CVE-2026-8961
MEDIUM 6.5
Firefox — Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11…
2026-05-19
CVE-2026-8962
HIGH 8.1
Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140…
2026-05-19
CVE-2026-8963
HIGH 7.5
Firefox — Spoofing issue in the Web Speech component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
2026-05-19
CVE-2026-8964
HIGH 7.5
Firefox — Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151…
2026-05-19
CVE-2026-8965
HIGH 7.5
Firefox — Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunder…
2026-05-19
CVE-2026-8966
HIGH 7.5
Firefox — Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 151 and Thunder…
2026-05-19
CVE-2026-8967
HIGH 7.5
Firefox — Information disclosure in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 151 and Thun…
2026-05-19
CVE-2026-8968
HIGH 7.5
Firefox — Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component. This vulnerability was fixe…
2026-05-19
CVE-2026-8969
HIGH 8.1
Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird …
2026-05-19
CVE-2026-8970
HIGH 8.8
Firefox — Privilege escalation in the Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.1…
2026-05-19
CVE-2026-8971
MEDIUM 6.5
Firefox — Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 151 and Th…
2026-05-19
CVE-2026-8972
HIGH 8.8
Firefox — Privilege escalation in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 151 and Thu…
2026-05-19
CVE-2026-8973
HIGH 8.8
Firefox — Memory safety bugs present in Firefox 150. Some of these bugs showed evidence of memory corruption and we pres…
2026-05-19
CVE-2026-8974
HIGH 8.8
Firefox — Memory safety bugs present in Firefox ESR 140.10 and Firefox 150. Some of these bugs showed evidence of memory…
2026-05-19
CVE-2026-8975
HIGH 8.8
Firefox — Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150. Some of these bugs showe…
2026-05-19