Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

97 matches found

Positive Technologies
Positive Technologiesadded 2025/08/23 12:0 a.m.6 views

PT-2025-34540 · Undefined · Undefined

As of the time of this writing Unix epoch 1755962780, there is a high-impact bug not fixed in Firefox ESR 140.2 or ESR 128.14 even though it's been fixed in Firefox 142 fixed typo, thanks u/nietzschecode If you compare these three sites: 1...

9.8CVSS6.1AI score0.00424EPSS
Exploits0References1
OSV
OSVadded 2025/05/27 1:15 p.m.1 views

CVE-2025-5262

A double-free could have occurred in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 139 and Thunderbird 128.11...

7.5CVSS7.2AI score0.00357EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2024/10/14 1:50 a.m.6 views

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

A remote code execution vulnerability was found in Firefox and Thunderbird. The Mozilla Foundation Security Advisories state: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines...

9.8CVSS7.9AI score0.32568EPSS
Exploits1References7
RedHat Linux
RedHat Linuxadded 2024/10/14 1:50 a.m.5 views

firefox: Use-after-free in Animation timeline (128.3.1 ESR Chemspill)

A remote code execution vulnerability was found in Firefox and Thunderbird. The Mozilla Foundation Security Advisories state: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines...

9.8CVSS7.9AI score0.32568EPSS
Exploits1References7
NCSC
NCSCadded 2023/03/16 12:0 a.m.2 views

Vulnerabilities fixed in Mozilla Firefox and Thunderbird

Mozilla has fixed vulnerabilities in Firefox and Thunderbird. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS Spoofing Access to sensitive data Access to system data The malicious party...

8.8CVSS6.8AI score0.00798EPSS
Exploits0
Veracode
Veracodeadded 2019/05/02 5:1 a.m.30 views

Denial Of Service (DoS)

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

9.8CVSS9.3AI score0.83228EPSS
Exploits17References17Affected Software2
Veracode
Veracodeadded 2019/05/02 4:54 a.m.34 views

Information Disclosure

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

6.5CVSS7.8AI score0.10981EPSS
Exploits5References18Affected Software3
Veracode
Veracodeadded 2019/05/02 4:52 a.m.36 views

Use-After-Free

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

10CVSS6.8AI score0.08894EPSS
Exploits1References21Affected Software3
Veracode
Veracodeadded 2019/05/02 4:52 a.m.35 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

10CVSS6.8AI score0.08894EPSS
Exploits1References21Affected Software3
Veracode
Veracodeadded 2019/05/02 4:43 a.m.24 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

9.3CVSS9.8AI score0.42609EPSS
Exploits5References23Affected Software3
Veracode
Veracodeadded 2019/05/02 4:43 a.m.27 views

Use-After-Free

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

9.3CVSS9.8AI score0.42609EPSS
Exploits5References22Affected Software3
Veracode
Veracodeadded 2019/05/02 4:43 a.m.36 views

Use-After-Free

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

9.3CVSS9.8AI score0.42609EPSS
Exploits5References19Affected Software3
Veracode
Veracodeadded 2019/05/02 4:42 a.m.26 views

Memory Corruption

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2012-1970,...

10CVSS9.6AI score0.07762EPSS
Exploits2References15Affected Software3
Veracode
Veracodeadded 2019/05/02 4:42 a.m.25 views

Cross Site Scripting (XSS)

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2012-1948,...

10CVSS8.2AI score0.73327EPSS
Exploits4References23Affected Software2
Veracode
Veracodeadded 2019/05/02 4:42 a.m.31 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2012-1948,...

10CVSS8.2AI score0.73327EPSS
Exploits4References29Affected Software3
Veracode
Veracodeadded 2019/05/02 4:42 a.m.17 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2012-1948,...

10CVSS8.2AI score0.73327EPSS
Exploits4References29Affected Software3
Tenable Nessus
Tenable Nessusadded 2016/03/17 12:0 a.m.40 views

RHEL 5 / 6 / 7 : thunderbird (RHSA-2016:0460)

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

9.3CVSS7.8AI score0.31046EPSS
Exploits9References46
RedHat Linux
RedHat Linuxadded 2016/03/16 5:36 p.m.55 views

Important: Red Hat Security Advisory: thunderbird security update

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

9.3CVSS7.1AI score0.31046EPSS
Exploits9References11
Tenable Nessus
Tenable Nessusadded 2016/01/07 12:0 a.m.33 views

CentOS 5 / 6 / 7 : thunderbird (CESA-2016:0001)

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

10CVSS7.9AI score0.06058EPSS
Exploits1References8
Tenable Nessus
Tenable Nessusadded 2015/11/30 12:0 a.m.34 views

CentOS 5 / 6 / 7 : thunderbird (CESA-2015:2519)

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.5CVSS8.7AI score0.04219EPSS
Exploits0References10
Rows per page
Query Builder