| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-10536 | Information disclosure in the Networking: Cache component | Mozilla | Firefox | - | - | 2025-09-16 12:26:37 | Deep Dive |
| CVE-2025-10537 | Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 | Mozilla | Firefox | - | - | 2025-09-16 12:26:37 | Deep Dive |
| CVE-2025-10529 | Same-origin policy bypass in the Layout component | Mozilla | Firefox | - | - | 2025-09-16 12:26:36 | Deep Dive |
| CVE-2025-10532 | Incorrect boundary conditions in the JavaScript: GC component | Mozilla | Firefox | - | - | 2025-09-16 12:26:36 | Deep Dive |
| CVE-2025-10527 | Sandbox escape due to use-after-free in the Graphics: Canvas2D component | Mozilla | Firefox | - | - | 2025-09-16 12:26:35 | Deep Dive |
| CVE-2025-10528 | Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component | Mozilla | Firefox | - | - | 2025-09-16 12:26:35 | Deep Dive |
| CVE-2025-10533 | Integer overflow in the SVG component | Mozilla | Firefox | - | - | 2025-09-16 12:26:35 | Deep Dive |
| CVE-2025-55031 | Passkey phishing within Bluetooth range | Mozilla | Firefox for iOS | 超危 | - | 2025-08-19 20:52:50 | Deep Dive |
| CVE-2025-55029 | Malicious scripts could spam popups for denial of service attacks | Mozilla | Firefox for iOS | 高危 | - | 2025-08-19 20:52:50 | Deep Dive |
| CVE-2025-55030 | Content-Disposition headers incorrectly ignored for some MIME types | Mozilla | Firefox for iOS | 中危 | - | 2025-08-19 20:52:49 | Deep Dive |
| CVE-2025-55028 | JavaScript alerts could impede UI interaction or allow denial of service attacks | Mozilla | Firefox for iOS | 中危 | - | 2025-08-19 20:52:49 | Deep Dive |
| CVE-2025-54145 | Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites | Mozilla | Firefox for iOS | 超危 | - | 2025-08-19 20:52:48 | Deep Dive |
| CVE-2025-54144 | Internal Firefox open-text URL scheme allowed loading of arbitrary URLs | Mozilla | Firefox for iOS | 中危 | - | 2025-08-19 20:52:48 | Deep Dive |
| CVE-2025-8042 | Sandboxed iframe could start downloads | Mozilla | Firefox | 超危 | - | 2025-08-19 20:52:47 | Deep Dive |
| CVE-2025-8364 | Address bar spoofing using an blob URI on Firefox for Android | Mozilla | Firefox | 中危 | - | 2025-08-19 20:52:47 | Deep Dive |
| CVE-2025-54143 | Sandboxed iframes could allow local downloads despite sandbox restrictions | Mozilla | Firefox for iOS | 超危 | - | 2025-08-19 20:52:47 | Deep Dive |
| CVE-2025-8041 | Incorrect URL truncation in Firefox for Android | Mozilla | Firefox | 中危 | - | 2025-08-19 20:52:46 | Deep Dive |
| CVE-2025-9187 | Memory safety bugs fixed in Firefox 142 and Thunderbird 142 | Mozilla | Firefox | 超危 | - | 2025-08-19 20:33:58 | Deep Dive |
| CVE-2025-9184 | Memory safety bugs fixed in Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142 | Mozilla | Firefox | 高危 | - | 2025-08-19 20:33:58 | Deep Dive |
| CVE-2025-9182 | Denial-of-service due to out-of-memory in the Graphics: WebRender component | Mozilla | Firefox | 高危 | - | 2025-08-19 20:33:57 | Deep Dive |