Lucene search
K

21 matches found

NVD
NVD
added 2026/02/24 2:16 p.m.19 views

CVE-2026-2795

Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

9.8CVSS0.00247EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/02/24 1:33 p.m.5 views

CVE-2026-2804

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148...

5.4CVSS5.8AI score0.00288EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/01/28 8:32 a.m.2 views

firefox: thunderbird: Information disclosure in the Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure in the Networking component...

5.3CVSS5.7AI score0.00411EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2026/01/13 1:30 p.m.5 views

CVE-2026-0881

Sandbox escape in the Messaging System component. This vulnerability was fixed in Firefox 147 and Thunderbird 147...

10CVSS5.8AI score0.00306EPSS
Exploits0References6
OSV
OSV
added 2025/11/11 4:15 p.m.5 views

CVE-2025-13025

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox 145 and Thunderbird 145...

7.5CVSS5.8AI score0.0027EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-29553

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00293EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/30 12:49 p.m.10 views

CVE-2025-11153 JIT miscompilation in the JavaScript Engine: JIT component

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 143.0.3...

0.00217EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2025/04/01 1:15 p.m.2 views

CVE-2025-3031

An attacker could read 32 bits of values spilled onto the stack in a JIT compiled function. This vulnerability affects Firefox 137 and Thunderbird 137...

6.5CVSS5.8AI score0.00282EPSS
Exploits0References3
OSV
OSV
added 2023/07/05 9:15 a.m.2 views

UBUNTU-CVE-2023-37208

When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13...

7.8CVSS7.1AI score0.00257EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.8 views

SUSE CVE-2018-12388

Mozilla developers and community members reported memory safety bugs present in Firefox 62. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 63...

8.8CVSS9.3AI score0.01438EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.3 views

SUSE CVE-2019-11749

A vulnerability exists in WebRTC where malicious web content can use probing techniques on the getUserMedia API using constraints to reveal device properties of cameras on the system without triggering a user prompt or notification. This allows for the potential fingerprinting of users. This...

4.3CVSS8.3AI score0.00896EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.4 views

SUSE CVE-2022-31736

A malicious website could have learned the size of a cross-origin resource that supported Range requests. This vulnerability affects Thunderbird 91.10, Firefox 101, and Firefox ESR 91.10...

7.5CVSS8.8AI score0.01055EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2021/12/09 12:58 p.m.5 views

Mozilla: Denial of Service when using the Location API in a loop

Using the Location API in a loop could have caused severe application hangs and crashes. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS7.3AI score0.01597EPSS
Exploits0References4
OSV
OSV
added 2021/06/24 2:15 p.m.2 views

CVE-2021-29961

When styling and rendering an oversized element, Firefox did not apply correct clipping which allowed an attacker to paint over the user interface. This vulnerability affects Firefox 89...

4.3CVSS6.9AI score0.0076EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/08/26 8:33 a.m.7 views

Mozilla: Out of bound read in Date.parse()

Due to confusion processing a hyphen character in Date.parse, a one-byte out of bounds read could have occurred, leading to potential information disclosure. This vulnerability affects Firefox 78...

6.5CVSS7.3AI score0.01362EPSS
Exploits0References5
OSV
OSV
added 2020/03/11 12:0 a.m.9 views

UBUNTU-CVE-2020-6810

After a website had entered fullscreen mode, it could have used a previously opened popup to obscure the notification that indicates the browser is in fullscreen mode. Combined with spoofing the browser chrome, this could have led to confusing the user about the current origin of the page and...

4.3CVSS7.3AI score0.00972EPSS
Exploits0References4
OSV
OSV
added 2019/07/23 2:15 p.m.3 views

CVE-2019-9821

A use-after-free vulnerability can occur in AssertWorkerThread due to a race condition with shared workers. This results in a potentially exploitable crash. This vulnerability affects Firefox 67...

8.1CVSS7.4AI score0.0085EPSS
Exploits0References2
OSV
OSV
added 2019/02/28 6:29 p.m.4 views

CVE-2018-12402

The internal WebBrowserPersist code does not use correct origin context for a resource being saved. This manifests when sub-resources are loaded as part of "Save Page As..." functionality. For example, a malicious page could recover a visitor's Windows username and NTLM hash by including resource...

6.5CVSS7.4AI score0.01406EPSS
Exploits0References6
OSV
OSV
added 2019/02/05 9:29 p.m.3 views

CVE-2018-18502

Mozilla developers and community members reported memory safety bugs present in Firefox 64. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox 65...

9.8CVSS7.4AI score0.02153EPSS
Exploits0References3
OSV
OSV
added 2018/06/11 9:29 p.m.4 views

CVE-2017-5421

A malicious site could spoof the contents of the print preview window if popup windows are enabled, resulting in user confusion of what site is currently loaded. This vulnerability affects Firefox 52 and Thunderbird 52...

7.5CVSS7AI score0.01947EPSS
Exploits1References5
Rows per page
Query Builder