← Browse

Mozilla

85 CVEs
CVE IDSeverityProduct / summaryPublished
CVE-2026-57962 MEDIUM 5.3 Thunderbird — A malicious LDAP server, which a Thunderbird user is configured to query for address-book autocomplete, can st… 2026-07-01 CVE-2026-57963 MEDIUM 6.5 Thunderbird — An attacker who can send HTML chat messages (via Matrix or XMPP) can inject arbitrary styled content, phishing… 2026-07-01 CVE-2026-14241 N/A Firefox — Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we … 2026-06-30 CVE-2026-12289 HIGH 8.8 Firefox — Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 152, Firefo… 2026-06-16 CVE-2026-12290 HIGH 8.1 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef… 2026-06-16 CVE-2026-12291 HIGH 8.8 Firefox — Use-after-free in the Networking: HTTP component. This vulnerability was fixed in Firefox 152, Firefox ESR 140… 2026-06-16 CVE-2026-12292 HIGH 8.1 Firefox — Incorrect boundary conditions in the Web Audio component. This vulnerability was fixed in Firefox 152, Firefox… 2026-06-16 CVE-2026-12293 CRITICAL 9.8 Firefox — Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152 and Thunderbird … 2026-06-16 CVE-2026-12294 CRITICAL 9.6 Firefox — Sandbox escape in the DOM: Workers component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12,… 2026-06-16 CVE-2026-12295 CRITICAL 9.6 Firefox — Sandbox escape in the DOM: Navigation component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.… 2026-06-16 CVE-2026-12296 CRITICAL 9.6 Firefox — Sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 152, Fir… 2026-06-16 CVE-2026-12297 CRITICAL 9.6 Firefox — Sandbox escape due to incorrect boundary conditions in the Networking component. This vulnerability was fixed … 2026-06-16 CVE-2026-12298 MEDIUM 5.4 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12299 MEDIUM 5.4 Firefox — JIT miscompilation in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152, Firefox ESR… 2026-06-16 CVE-2026-12300 MEDIUM 5.3 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152. 2026-06-16 CVE-2026-12301 MEDIUM 5.3 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152. 2026-06-16 CVE-2026-12302 MEDIUM 6.5 Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152, Firefox ESR 140… 2026-06-16 CVE-2026-12303 MEDIUM 4.3 Firefox — Information disclosure due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerabil… 2026-06-16 CVE-2026-12304 CRITICAL 9.1 Firefox — Same-origin policy bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 152, F… 2026-06-16 CVE-2026-12305 HIGH 7.5 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12306 MEDIUM 5.3 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12307 MEDIUM 5.3 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12308 MEDIUM 5.3 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12309 MEDIUM 6.5 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12310 HIGH 7.5 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12311 MEDIUM 4.7 Firefox — Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was f… 2026-06-16 CVE-2026-12312 HIGH 7.5 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12313 MEDIUM 4.7 Firefox — Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was f… 2026-06-16 CVE-2026-12314 HIGH 7.5 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thund… 2026-06-16 CVE-2026-12315 CRITICAL 9.1 Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152, Firefox ESR 140… 2026-06-16 CVE-2026-12316 CRITICAL 9.1 Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152 and Thunderbird … 2026-06-16 CVE-2026-12317 HIGH 7.5 Firefox — Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152. 2026-06-16 CVE-2026-12318 HIGH 7.3 Firefox — Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 152 a… 2026-06-16 CVE-2026-12319 MEDIUM 6.5 Firefox — Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 152 and Thun… 2026-06-16 CVE-2026-12320 MEDIUM 4.3 Firefox — Information disclosure in the Password Manager component. This vulnerability was fixed in Firefox 152 and Thun… 2026-06-16 CVE-2026-12321 MEDIUM 5.4 Firefox — JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and T… 2026-06-16 CVE-2026-12322 MEDIUM 5.4 Firefox — Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 1… 2026-06-16 CVE-2026-12323 MEDIUM 5.4 Firefox — Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird … 2026-06-16 CVE-2026-12324 HIGH 7.3 Firefox — Incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox … 2026-06-16 CVE-2026-12325 MEDIUM 6.5 Firefox — Denial-of-service in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 152, Firefox ES… 2026-06-16 CVE-2026-12326 HIGH 8.1 Firefox — Memory safety bugs present in Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory co… 2026-06-16 CVE-2026-12327 HIGH 8.1 Firefox — Memory safety bugs present in Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Som… 2026-06-16 CVE-2026-12328 HIGH 8.1 Firefox — Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and … 2026-06-16 CVE-2026-12329 MEDIUM 5.3 Firefox — Memory safety bug fixed in Thunderbird ESR 140.12. This vulnerability was fixed in Firefox ESR 140.12 and Thun… 2026-06-16 CVE-2026-12330 MEDIUM 5.4 Firefox — Incorrect boundary conditions in the Internationalization component. This vulnerability was fixed in Firefox E… 2026-06-16 CVE-2026-53899 MEDIUM 6.5 Firefox For Ios — Firefox for iOS used partial domain matching when attaching cookies to PDF requests, allowing a malicious site… 2026-06-16 CVE-2026-53900 MEDIUM 4.3 Firefox For Ios — Firefox for iOS preserved cookies set on the initial PDF request across cross-origin HTTP redirects in Tempora… 2026-06-16 CVE-2026-11799 HIGH 7.5 Focus For Ios — UXSS in Focus for iOS / Klar Webkit navigation. This vulnerability was fixed in Focus for iOS 151.3.1 and Klar… 2026-06-09 CVE-2026-10701 HIGH 7.5 Firefox — Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3… 2026-06-02 CVE-2026-10702 MEDIUM 4.3 Firefox — JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 151.0.3. 2026-06-02 CVE-2026-9308 MEDIUM 5.4 Firefox For Ios — Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeho… 2026-06-01 CVE-2026-9309 MEDIUM 5.4 Firefox For Ios — Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inje… 2026-06-01 CVE-2026-9078 MEDIUM 5.4 Firefox For Ios — Firefox for iOS displayed specially crafted right-to-left (RTL) and internationalized domain names (IDNs) inco… 2026-05-25 CVE-2026-8706 MEDIUM 6.5 Firefox For Ios — Firefox for iOS hosted Reader mode on an unauthenticated local web server, allowing another application on the… 2026-05-19 CVE-2026-8945 HIGH 7.5 Firefox — Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 151. 2026-05-19 CVE-2026-8946 HIGH 7.5 Firefox — Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefo… 2026-05-19 CVE-2026-8947 HIGH 7.3 Firefox — Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability was fixed in Firefox 151, Firefox E… 2026-05-19 CVE-2026-8948 CRITICAL 9.1 Firefox — Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Th… 2026-05-19 CVE-2026-8949 HIGH 7.5 Firefox — Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.… 2026-05-19 CVE-2026-8950 CRITICAL 9.3 Firefox — Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Fire… 2026-05-19 CVE-2026-8951 MEDIUM 6.5 Firefox — Spoofing issue in the Toolbar component in Firefox for Android. This vulnerability was fixed in Firefox 151. 2026-05-19 CVE-2026-8952 HIGH 8.8 Firefox — Privilege escalation in the Application Update component. This vulnerability was fixed in Firefox 151 and Thun… 2026-05-19 CVE-2026-8953 CRITICAL 9.6 Firefox — Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in … 2026-05-19 CVE-2026-8954 HIGH 7.5 Firefox — Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in … 2026-05-19 CVE-2026-8955 HIGH 8.8 Firefox — Privilege escalation in the DOM: Workers component. This vulnerability was fixed in Firefox 151, Firefox ESR 1… 2026-05-19 CVE-2026-8956 CRITICAL 9.8 Firefox — Integer overflow in the Networking: JAR component. This vulnerability was fixed in Firefox 151, Firefox ESR 14… 2026-05-19 CVE-2026-8957 HIGH 8.8 Firefox — Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefo… 2026-05-19 CVE-2026-8958 HIGH 8.6 Firefox — Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was f… 2026-05-19 CVE-2026-8959 CRITICAL 9.6 Firefox — Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fix… 2026-05-19 CVE-2026-8960 HIGH 7.5 Firefox — Spoofing issue in WebExtensions. This vulnerability was fixed in Firefox 151 and Thunderbird 151. 2026-05-19 CVE-2026-8961 MEDIUM 6.5 Firefox — Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11… 2026-05-19 CVE-2026-8962 HIGH 8.1 Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140… 2026-05-19 CVE-2026-8963 HIGH 7.5 Firefox — Spoofing issue in the Web Speech component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. 2026-05-19 CVE-2026-8964 HIGH 7.5 Firefox — Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151… 2026-05-19 CVE-2026-8965 HIGH 7.5 Firefox — Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunder… 2026-05-19 CVE-2026-8966 HIGH 7.5 Firefox — Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 151 and Thunder… 2026-05-19 CVE-2026-8967 HIGH 7.5 Firefox — Information disclosure in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 151 and Thun… 2026-05-19 CVE-2026-8968 HIGH 7.5 Firefox — Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component. This vulnerability was fixe… 2026-05-19 CVE-2026-8969 HIGH 8.1 Firefox — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird … 2026-05-19 CVE-2026-8970 HIGH 8.8 Firefox — Privilege escalation in the Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.1… 2026-05-19 CVE-2026-8971 MEDIUM 6.5 Firefox — Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 151 and Th… 2026-05-19 CVE-2026-8972 HIGH 8.8 Firefox — Privilege escalation in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 151 and Thu… 2026-05-19 CVE-2026-8973 HIGH 8.8 Firefox — Memory safety bugs present in Firefox 150. Some of these bugs showed evidence of memory corruption and we pres… 2026-05-19 CVE-2026-8974 HIGH 8.8 Firefox — Memory safety bugs present in Firefox ESR 140.10 and Firefox 150. Some of these bugs showed evidence of memory… 2026-05-19 CVE-2026-8975 HIGH 8.8 Firefox — Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150. Some of these bugs showe… 2026-05-19