Vulnerabilities in mozilla

1,863 results
CVE-2025-13014HIGHUse-after-free in the Audio/Video componentEPSS 0.3%CVE-2025-4085HIGHPotential information leakage and privilege escalation in UITour actorEPSS 0.3%CVE-2026-6782HIGHInformation disclosure in the IP Protection componentEPSS 0.3%CVE-2026-2794MEDIUMInformation disclosure due to uninitialized memory in Firefox and Firefox Focus for AndroidEPSS 0.3%CVE-2026-12312HIGHMemory safety bug fixed in Firefox 152EPSS 0.3%CVE-2026-12310HIGHMemory safety bug fixed in Firefox 152EPSS 0.3%CVE-2026-12314HIGHMemory safety bug fixed in Firefox 152EPSS 0.3%CVE-2026-8951MEDIUMSpoofing issue in the Toolbar component in Firefox for AndroidEPSS 0.3%CVE-2026-12300MEDIUMMemory safety bug fixed in Firefox 152EPSS 0.3%CVE-2025-11152HIGHSandbox escape due to integer overflow in the Graphics: Canvas2D componentEPSS 0.3%CVE-2026-12301MEDIUMMemory safety bug fixed in Firefox 152EPSS 0.3%CVE-2026-12315CRITICALMitigation bypass in the DOM: Security componentEPSS 0.3%CVE-2026-12326HIGHMemory safety bugs fixed in Firefox 152 and Thunderbird 152EPSS 0.3%CVE-2026-2803HIGHInformation disclosure, mitigation bypass in the Settings UI componentEPSS 0.3%CVE-2025-11712MEDIUMAn OBJECT tag type attribute overrode browser behavior on web resources without a content-typeEPSS 0.3%CVE-2025-6425MEDIUMThe WebCompat WebExtension shipped with Firefox exposed a persistent UUIDEPSS 0.2%CVE-2026-12302MEDIUMMitigation bypass in the DOM: Security componentEPSS 0.2%CVE-2026-2798HIGHUse-after-free in the DOM: Core & HTML componentEPSS 0.2%CVE-2022-34471MEDIUMWhen downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifEPSS 0.2%CVE-2026-2795HIGHUse-after-free in the JavaScript: GC componentEPSS 0.2%