Vulnerabilities in mozilla

1,863 results
CVE-2026-8953CRITICALSandbox escape due to use-after-free in the Disability Access APIs componentEPSS 0.5%CVE-2024-6603HIGHMemory corruption in thread creationEPSS 0.5%CVE-2021-38497Through use of reportValidity() and window.open(), a plain-text validation message could have been overlaid on another origin, leading to poEPSS 0.5%CVE-2026-4688CRITICALSandbox escape due to use-after-free in the Disability Access APIs componentEPSS 0.5%CVE-2025-9179CRITICALSandbox escape due to invalid pointer in the Audio/Video: GMP componentEPSS 0.5%CVE-2026-4726HIGHDenial-of-service in the XML componentEPSS 0.5%CVE-2026-4727HIGHDenial-of-service in the Libraries component in NSSEPSS 0.5%CVE-2022-3034MEDIUMWhen receiving an HTML email that specified to load an <code>iframe</code> element from a remote location, a request to the remote document EPSS 0.5%CVE-2021-43532The 'Copy Image Link' context menu action would copy the final image URL after redirects. By embedding an image that triggered authenticatioEPSS 0.5%CVE-2022-45414HIGHIf a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the PEPSS 0.5%CVE-2023-4578Error reporting methods in SpiderMonkey could have triggered an Out of Memory ExceptionEPSS 0.5%CVE-2023-4045Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violatioEPSS 0.5%CVE-2024-1549MEDIUMIf a website set a large custom cursor, portions of the cursor could have overlapped with the permission dialog, potentially resulting in usEPSS 0.5%CVE-2026-0879CRITICALSandbox escape due to incorrect boundary conditions in the Graphics componentEPSS 0.5%CVE-2023-32208Service workers could reveal script base URL due to dynamic `import()`. This vulnerability affects Firefox < 113.EPSS 0.5%CVE-2023-25740HIGHAfter downloading a Windows <code>.scf</code> script from the local filesystem, an attacker could supply a remote path that would lead to unEPSS 0.5%CVE-2024-4771HIGHA memory allocation check was missing which would lead to a use-after-free if the allocation failed. This could have triggered a crash or poEPSS 0.5%CVE-2023-29551HIGHMemory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort soEPSS 0.5%CVE-2023-23606HIGHMemory safety bugs fixed in Firefox 109EPSS 0.5%CVE-2022-22752HIGHMozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence EPSS 0.5%