| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-6746 | Use-after-free in the DOM: Core & HTML component | Mozilla | Firefox | - | - | 2026-04-21 12:40:44 | Deep Dive |
| CVE-2026-6654 | Use-After-Free and Double-Free in IntoIter::drop when element drop panics | Mozilla | thin-vec | - | - | 2026-04-20 10:05:52 | Deep Dive |
| CVE-2026-5735 | Memory safety bugs fixed in Firefox 149.0.2 and Thunderbird 149.0.2 | Mozilla | Firefox | 超危 | - | 2026-04-07 12:43:16 | Deep Dive |
| CVE-2026-5734 | Memory safety bugs fixed in Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2 | Mozilla | Firefox | 超危 | - | 2026-04-07 12:43:15 | Deep Dive |
| CVE-2026-5733 | Incorrect boundary conditions in the Graphics: WebGPU component | Mozilla | Firefox | - | - | 2026-04-07 12:43:14 | Deep Dive |
| CVE-2026-5732 | Incorrect boundary conditions, integer overflow in the Graphics: Text component | Mozilla | Firefox | - | - | 2026-04-07 12:43:13 | Deep Dive |
| CVE-2026-5731 | Memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2 | Mozilla | Firefox | - | - | 2026-04-07 12:43:12 | Deep Dive |
| CVE-2026-4371 | Out of bounds read in IMAP parsing | Mozilla | Thunderbird | 中危 | - | 2026-03-24 20:27:15 | Deep Dive |
| CVE-2026-3889 | Spoofing issue in Thunderbird | Mozilla | Thunderbird | 中危 | - | 2026-03-24 20:27:14 | Deep Dive |
| CVE-2026-4729 | Memory safety bugs fixed in Firefox 149 and Thunderbird 149 | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:44 | Deep Dive |
| CVE-2026-4721 | Memory safety bugs fixed in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149 | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:44 | Deep Dive |
| CVE-2026-4720 | Memory safety bugs fixed in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149 | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:43 | Deep Dive |
| CVE-2026-4719 | Incorrect boundary conditions in the Graphics: Text component | Mozilla | Firefox | 高危 | - | 2026-03-24 12:30:43 | Deep Dive |
| CVE-2026-4728 | Spoofing issue in the Privacy: Anti-Tracking component | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:42 | Deep Dive |
| CVE-2026-4718 | Undefined behavior in the WebRTC: Signaling component | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:42 | Deep Dive |
| CVE-2026-4727 | Denial-of-service in the Libraries component in NSS | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:41 | Deep Dive |
| CVE-2026-4726 | Denial-of-service in the XML component | Mozilla | Firefox | 中危 | - | 2026-03-24 12:30:41 | Deep Dive |
| CVE-2026-4717 | Privilege escalation in the Netmonitor component | Mozilla | Firefox | 超危 | - | 2026-03-24 12:30:40 | Deep Dive |
| CVE-2026-4716 | Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component | Mozilla | Firefox | 超危 | - | 2026-03-24 12:30:39 | Deep Dive |
| CVE-2026-4715 | Uninitialized memory in the Graphics: Canvas2D component | Mozilla | Firefox | 超危 | - | 2026-03-24 12:30:39 | Deep Dive |