Linux Distros Unpatched Vulnerability : CVE-2022-46878

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers Randell Jesup, Valentin Gosu, Olli Pettay, and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 102.5. Some of the...

Linux Distros Unpatched Vulnerability : CVE-2024-7652

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an...

CVE-2025-6424

A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability was fixed in Firefox 140, Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12...

CVE-2025-6425

An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser, and persisted between containers and normal/private browsing mode, but not profiles. This vulnerability was fixed in Firefox 140, Firefox ESR 115.25, Firefox ESR...

Linux Distros Unpatched Vulnerability : CVE-2018-12399

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protoco...

GHSA-9VQR-5J64-P9WR vulnerabilities

Vulnerabilities for packages: firefox...

GHSA-7R4Q-Q89F-2MCG vulnerabilities

Vulnerabilities for packages: firefox...

GHSA-928F-3RXQ-5JVP vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

GHSA-3FXJ-QPXV-J6QJ vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

GHSA-PC7C-2483-8558 vulnerabilities

Vulnerabilities for packages: firefox-esr...

GHSA-CR94-C6J4-Q6G5 vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

GHSA-GMGG-93H8-CP32 vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

CVE-2025-1014

Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability was fixed in Firefox 135, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135...

CVE-2025-1012 vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

CVE-2025-0237 vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

CVE-2025-0239 vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

CVE-2024-11697 vulnerabilities

Vulnerabilities for packages: firefox...

CVE-2024-11699 vulnerabilities

Vulnerabilities for packages: firefox...

CVE-2024-10004 vulnerabilities

Vulnerabilities for packages: firefox...

CVE-2024-9398

By checking the result of calls to window.open with specifically set protocol handlers, an attacker could determine if the application which implements that protocol handler is installed. This vulnerability affects Firefox 131, Firefox ESR 128.3, Thunderbird 128.3, and Thunderbird 131...