| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-9182 | Denial-of-service due to out-of-memory in the Graphics: WebRender component | Mozilla | Firefox | 高危 | - | 2025-08-19 20:33:57 | Deep Dive |
| CVE-2025-9186 | Spoofing issue in the Address Bar component of Firefox Focus for Android | Mozilla | Firefox | 中危 | - | 2025-08-19 20:33:56 | Deep Dive |
| CVE-2025-9185 | Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142 | Mozilla | Firefox | 高危 | - | 2025-08-19 20:33:56 | Deep Dive |
| CVE-2025-9181 | Uninitialized memory in the JavaScript Engine component | Mozilla | Firefox | 中危 | - | 2025-08-19 20:33:55 | Deep Dive |
| CVE-2025-9180 | Same-origin policy bypass in the Graphics: Canvas2D component | Mozilla | Firefox | 高危 | - | 2025-08-19 20:33:55 | Deep Dive |
| CVE-2025-9179 | Sandbox escape due to invalid pointer in the Audio/Video: GMP component | Mozilla | Firefox | 超危 | - | 2025-08-19 20:33:54 | Deep Dive |
| CVE-2025-8044 | Memory safety bugs fixed in Firefox 141 and Thunderbird 141 | Mozilla | Firefox | 超危 | - | 2025-07-22 20:49:29 | Deep Dive |
| CVE-2025-8043 | Incorrect URL truncation | Mozilla | Firefox | 超危 | - | 2025-07-22 20:49:29 | Deep Dive |
| CVE-2025-8035 | Memory safety bugs fixed in Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141 | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:29 | Deep Dive |
| CVE-2025-8040 | Memory safety bugs fixed in Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141 | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:28 | Deep Dive |
| CVE-2025-8034 | Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141 | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:28 | Deep Dive |
| CVE-2025-8038 | CSP frame-src was not correctly enforced for paths | Mozilla | Firefox | 超危 | - | 2025-07-22 20:49:27 | Deep Dive |
| CVE-2025-8032 | XSLT documents could bypass CSP | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:27 | Deep Dive |
| CVE-2025-8033 | Incorrect JavaScript state machine for generators | Mozilla | Firefox | 中危 | - | 2025-07-22 20:49:27 | Deep Dive |
| CVE-2025-8039 | Search terms persisted in URL bar | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:27 | Deep Dive |
| CVE-2025-8037 | Nameless cookies shadow secure cookies | Mozilla | Firefox | 超危 | - | 2025-07-22 20:49:26 | Deep Dive |
| CVE-2025-8030 | Potential user-assisted code execution in “Copy as cURL” command | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:26 | Deep Dive |
| CVE-2025-8031 | Incorrect URL stripping in CSP reports | Mozilla | Firefox | 超危 | - | 2025-07-22 20:49:26 | Deep Dive |
| CVE-2025-8029 | javascript: URLs executed on object and embed tags | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:25 | Deep Dive |
| CVE-2025-8036 | DNS rebinding circumvents CORS | Mozilla | Firefox | 高危 | - | 2025-07-22 20:49:25 | Deep Dive |