Mozilla
mozilla
3,581 CVEs • 43 products
Products (43)
Click to collapseToggle
Products (43)
Click to collapse
CVEs (3,581)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar. This vulnerability affects Firefox < 77. |
Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observab...Show more |
2Canonical Mozilla4Firefox Firefox EsrThunderbird+1 moreJun 17, 2026 Jul 9, 2020 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability...Show more |
2Canonical Mozilla4Firefox Firefox EsrThunderbird+1 moreJun 17, 2026 Jul 9, 2020 N/A· v4 5.3 MEDIUM· v3 2.6 LOW· v2 When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9. |
For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefo...Show more |
4Debian FedoraprojectMozilla+1 more4Debian Linux FedoraFirefox+1 moreJun 17, 2026 Jul 9, 2020 N/A· v4 4.4 MEDIUM· v3 1.2 LOW· v2 During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm which entailed significantly input-dependent flow. This allowed an attacker able to perform electromagnetic-ba...Show more |
2Debian Mozilla4Debian Linux FirefoxFirefox Esr+1 moreJun 17, 2026 Jul 9, 2020 N/A· v4 4.4 MEDIUM· v3 1.2 LOW· v2 NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9. |
2Canonical Mozilla2Thunderbird Ubuntu LinuxJun 17, 2026 Jul 9, 2020 N/A· v4 7.5 HIGH· v3 4.3 MEDIUM· v2 If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection. T...Show more |
2Mozilla Opensuse2Firefox LeapJun 17, 2026 Jul 9, 2020 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 When constructing a permission prompt for WebRTC, a URI was supplied from the content process. This URI was untrusted, and could have been the URI of an origin that was previously granted permission; bypassing the prompt...Show more |
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 16 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially explo...Show more |
2Libjpeg Turbo Mozilla2Libjpeg Turbo MozjpegJun 17, 2026 Jun 3, 2020 N/A· v4 8.1 HIGH· v3 5.8 MEDIUM· v2 libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file. |
4Canonical DebianMozilla+1 more6Debian Linux FirefoxFirefox Esr+3 moreJun 17, 2026 May 26, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox ESR < 68.8, Firefox < 76,...Show more |
For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't needed in this case, and...Show more |
2Canonical Mozilla4Firefox Firefox EsrThunderbird+1 moreJun 17, 2026 May 26, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a...Show more |
Documents formed using data: URLs in an OBJECT element failed to inherit the CSP of the creating context. This allowed the execution of scripts that should have been blocked, albeit with a unique opaque origin. This vuln...Show more |
Incorrect origin serialization of URLs with IPv6 addresses could lead to incorrect security checks. This vulnerability affects Firefox < 76. |
1Mozilla 2Firefox Firefox EsrJun 17, 2026 May 26, 2020 N/A· v4 10.0 CRITICAL· v3 7.5 HIGH· v2 The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this issue only affects Firefox on Windows operating systems.*. This vulnerability affects Firefox...Show more |
1Mozilla 2Firefox Firefox EsrJun 17, 2026 May 26, 2020 N/A· v4 10.0 CRITICAL· v3 7.5 HIGH· v2 The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this issue only affects Firefox on Windows operating systems.*. This vulnerability affects Firefox...Show more |
1Mozilla 3Firefox Firefox EsrThunderbirdJun 17, 2026 May 26, 2020 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability. This resulted in a potentially exploitable crash. This vulnerability affects Firefox ESR < 68.8, Firefox < 76, and Thunder...Show more |
Mozilla developers and community members reported memory safety bugs present in Firefox 75. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exp...Show more |