Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: firefox Clear
ID Title
CVE-2026-2764 Use-After-Free in mozilla (CVE-2026-2764)
vulnerability in mozilla (CVE-2026-2764). Successful exploitation can lead to full system takeover.
CVE-2026-2763 Use-After-Free in mozilla (CVE-2026-2763)
vulnerability in mozilla (CVE-2026-2763). Successful exploitation can lead to full system takeover.
CVE-2026-2765 Use-After-Free in mozilla (CVE-2026-2765)
vulnerability in mozilla (CVE-2026-2765). Successful exploitation can lead to full system takeover.
CVE-2026-2767 Use-After-Free in mozilla (CVE-2026-2767)
vulnerability in mozilla (CVE-2026-2767). Successful exploitation can lead to full system takeover.
CVE-2026-2768 Vulnerability in mozilla (CVE-2026-2768)
vulnerability in mozilla (CVE-2026-2768). Successful exploitation can lead to full system takeover.
CVE-2026-2771 Out-of-Bounds Read in mozilla (CVE-2026-2771)
vulnerability in mozilla (CVE-2026-2771). Successful exploitation can lead to full system takeover.
CVE-2026-2772 Use-After-Free in mozilla (CVE-2026-2772)
vulnerability in mozilla (CVE-2026-2772). Successful exploitation can lead to full system takeover.
CVE-2026-2770 Use-After-Free in mozilla (CVE-2026-2770)
vulnerability in mozilla (CVE-2026-2770). Successful exploitation can lead to full system takeover.
CVE-2026-2776 Buffer Overflow in mozilla (CVE-2026-2776)
vulnerability in mozilla (CVE-2026-2776). Successful exploitation can lead to full system takeover.
CVE-2026-2775 Vulnerability in mozilla (CVE-2026-2775)
vulnerability in mozilla (CVE-2026-2775). Successful exploitation can lead to full system takeover.
CVE-2026-2774 Vulnerability in mozilla (CVE-2026-2774)
vulnerability in mozilla (CVE-2026-2774). Successful exploitation can lead to full system takeover.
CVE-2026-2758 Use-After-Free in mozilla (CVE-2026-2758)
vulnerability in mozilla (CVE-2026-2758). Successful exploitation can lead to full system takeover.
CVE-2026-2761 Vulnerability in mozilla (CVE-2026-2761)
vulnerability in mozilla (CVE-2026-2761). Successful exploitation can lead to full system takeover.
CVE-2026-2759 Vulnerability in mozilla (CVE-2026-2759)
vulnerability in mozilla (CVE-2026-2759). Successful exploitation can lead to full system takeover.
CVE-2026-2786 Use-After-Free in mozilla (CVE-2026-2786)
vulnerability in mozilla (CVE-2026-2786). Successful exploitation can lead to full system takeover.
CVE-2026-2447 Vulnerability in mozilla (CVE-2026-2447)
vulnerability in mozilla (CVE-2026-2447). Successful exploitation can lead to full system takeover.
CVE-2026-24869 Use-After-Free in mozilla (CVE-2026-24869)
vulnerability in mozilla (CVE-2026-24869). Successful exploitation can lead to full system takeover.
CVE-2026-0881 Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
CVE-2026-0878 Vulnerability in mozilla (CVE-2026-0878)
vulnerability in mozilla (CVE-2026-0878). Confidential information can be exposed externally.
CVE-2026-0880 Vulnerability in mozilla (CVE-2026-0880)
vulnerability in mozilla (CVE-2026-0880). Successful exploitation can lead to full system takeover.
CVE-2026-0882 Use-After-Free in mozilla (CVE-2026-0882)
vulnerability in mozilla (CVE-2026-0882). Successful exploitation can lead to full system takeover.
CVE-2026-0891 Buffer Overflow in mozilla (CVE-2026-0891)
vulnerability in mozilla (CVE-2026-0891). Successful exploitation can lead to full system takeover.
CVE-2026-0877 Vulnerability in mozilla (CVE-2026-0877)
vulnerability in mozilla (CVE-2026-0877). Confidential information can be exposed externally.
CVE-2026-0879 Buffer Overflow in mozilla (CVE-2026-0879)
vulnerability in mozilla (CVE-2026-0879). Successful exploitation can lead to full system takeover.
CVE-2024-9680 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2024-9680)
vulnerability in Mozilla firefox (CVE-2024-9680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-4367 Vulnerability in pdfjs-dist (CVE-2024-4367)
vulnerability in pdfjs-dist (CVE-2024-4367). Successful exploitation can lead to full system takeover. Exploitable via ``isEvalSupported``. Mitigation: upgrade to `4.2.67` or later.
CVE-2016-9079 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2016-9079)
vulnerability in Mozilla firefox (CVE-2016-9079). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-4495 KEV [KEV] Information Disclosure in Mozilla firefox (CVE-2015-4495)
vulnerability in Mozilla firefox (CVE-2015-4495). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-26486 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2022-26486)
vulnerability in Mozilla firefox (CVE-2022-26486). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-26485 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2022-26485)
vulnerability in Mozilla firefox (CVE-2022-26485). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-1675 KEV [KEV] Buffer Overflow in Mozilla firefox (CVE-2013-1675)
vulnerability in Mozilla firefox (CVE-2013-1675). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-7317 Use-After-Free in c (CVE-2019-7317)
vulnerability in c (CVE-2019-7317). Risk of unauthorized operations or information disclosure.
CVE-2007-5341 Remote code execution in the Venkman script debugger in Mozilla Firefox before 2.0.0.8.
Remote code execution in the Venkman script debugger in Mozilla Firefox before 2.0.0.8.
CVE-2017-6753 A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected br...
A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meeti...
CVE-2016-10196 Out-of-Bounds Write in c (CVE-2016-10196)
out-of-bounds write in c (CVE-2016-10196). Risk of unauthorized operations or information disclosure.
CVE-2015-4000 Vulnerability in openssl (CVE-2015-4000)
vulnerability in openssl (CVE-2015-4000). Risk of unauthorized operations or information disclosure.
CVE-2013-2566 Vulnerability in oracle (CVE-2013-2566)
vulnerability in oracle (CVE-2013-2566). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →