CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

firefox: Same-origin policy bypass in the Networking: HTTP component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the Networking: HTTP component...

9.3CVSS5.7AI score0.00018EPSS

Exploits0References6

OSV•added yesterday•2 views

ALSA-2026:22643 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Incorrect boundary conditions in the JavaScript Engine: JIT component CVE-2026-8388 firefox: Other issue in the JavaScript Engine component CVE-2026-8391 firefox: Sandbox escape in the Profile Backup component...

9.8CVSS5.9AI score0.00164EPSS

Exploits0References40

RedHat Linux•added 2026/05/27 4:12 p.m.•9 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS5.9AI score0.00109EPSS

Exploits0References19

OSV•added 2026/05/27 12:0 a.m.•6 views

ALSA-2026:21380 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Incorrect boundary conditions in the JavaScript Engine: JIT component CVE-2026-8388 firefox: Other issue in the JavaScript Engine component CVE-2026-8391 firefo...

9.8CVSS5.9AI score0.00109EPSS

Exploits0References38

AlmaLinux•added 2026/05/27 12:0 a.m.•5 views

Important: firefox security update

9.8CVSS5.9AI score0.00109EPSS

Exploits0References38

OSV•added 2026/05/19 2:16 p.m.•3 views

UBUNTU-CVE-2026-8950

Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

9.3CVSS5.8AI score0.00018EPSS

Exploits0References10

Vulnrichment•added 2026/05/19 12:29 p.m.•6 views

CVE-2026-8950 Same-origin policy bypass in the Networking: HTTP component

Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

5.8AI score0.00018EPSS

Exploits0References5

CVE•added 2026/05/19 12:29 p.m.•10 views

CVE-2026-8950

CVE-2026-8950 is a reported same-origin policy bypass in the Networking: HTTP component, with root cause not explicitly detailed in the provided documents. Affected software includes Firefox (fixed in version 151) and Firefox ESR (140.11), as well as Thunderbird (fixed in 151 and 140.11). The CVS...

9.3CVSS5.8AI score0.00018EPSS

Exploits0References5Affected Software2

Cvelist•added 2026/05/19 12:29 p.m.•29 views

CVE-2026-8950 Same-origin policy bypass in the Networking: HTTP component

Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

0.00018EPSS

Exploits0References5

CNNVD•added 2026/05/19 12:0 a.m.•4 views

Mozilla Firefox多款产品访问控制错误漏洞

Mozilla Firefox, among others, are products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Firefox ESR is a extended support version of Firefox the web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla...

9.3CVSS5.8AI score0.00018EPSS

Exploits0References1

RedHat Linux•added 2026/04/15 10:57 a.m.•3 views