Mozilla CVE Vulnerabilities & CVE List (3,616)

Products (CPE): — CVEs: 3,616

Mozilla vulnerability overview

Aggregates CVE and security vulnerability intelligence across all Mozilla-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk path handling and vendor risk input validation and related problems; some flaws may lead to vendor impact unexpected behavior, affecting vendor surface production workloads scenarios.

Vulnerability distribution trend (last 24 months)

Showing 6180 of 3616 CVEs
«« First « Prev Page 4 / 181 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2026-8970 Privilege escalation in the Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 8.8 0.31% 2026-05-19 2026-06-17
CVE-2026-8969 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 8.1 0.29% 2026-05-19 2026-06-17
CVE-2026-8968 Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 7.5 0.41% 2026-05-19 2026-06-17
CVE-2026-8967 Information disclosure in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 7.5 0.33% 2026-05-19 2026-06-17
CVE-2026-8966 Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 7.5 0.33% 2026-05-19 2026-06-17
CVE-2026-8965 Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 7.5 0.32% 2026-05-19 2026-06-17
CVE-2026-8964 Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 7.5 0.30% 2026-05-19 2026-06-17
CVE-2026-8963 Spoofing issue in the Web Speech component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 7.5 0.30% 2026-05-19 2026-06-17
CVE-2026-8962 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 8.1 0.37% 2026-05-19 2026-06-17
CVE-2026-8961 Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 6.5 0.32% 2026-05-19 2026-06-17
CVE-2026-8960 Spoofing issue in WebExtensions. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 7.5 0.38% 2026-05-19 2026-06-17
CVE-2026-8959 Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 9.6 0.42% 2026-05-19 2026-06-17
CVE-2026-8958 Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 8.6 0.34% 2026-05-19 2026-06-17
CVE-2026-8957 Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 8.8 0.39% 2026-05-19 2026-06-17
CVE-2026-8956 Integer overflow in the Networking: JAR component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 9.8 0.60% 2026-05-19 2026-06-17
CVE-2026-8955 Privilege escalation in the DOM: Workers component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 8.8 0.39% 2026-05-19 2026-06-17
CVE-2026-8954 Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 7.5 0.43% 2026-05-19 2026-06-17
CVE-2026-8953 Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. [email protected] 9.6 0.53% 2026-05-19 2026-06-17
CVE-2026-8952 Privilege escalation in the Application Update component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. [email protected] 8.8 0.36% 2026-05-19 2026-06-17
CVE-2026-8951 Spoofing issue in the Toolbar component in Firefox for Android. This vulnerability was fixed in Firefox 151. [email protected] 6.5 0.25% 2026-05-19 2026-06-17
«« First « Prev Page 4 / 181 Next »
cvelogic Threat Intelligence