Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Firefox — Vulnerabilities & Security Advisories 1233

All 1233 CVE vulnerabilities found in Firefox, with AI-generated Chinese analysis, references, and POCs.

Vendor: Mozilla

CVE IDTitleCVSSSeverityPaused
CVE-2026-4684 Race condition, use-after-free in the Graphics: WebRender component 8.1 -2026-03-24
CVE-2026-3847 Memory safety bugs fixed in Firefox 148.0.2 8.8AIHighAI2026-03-10
CVE-2026-3846 Same-origin policy bypass in the CSS Parsing and Computation component 9.8AICriticalAI2026-03-10
CVE-2026-3845 Heap buffer overflow in the Audio/Video: Playback component in Firefox for Android 8.8AIHighAI2026-03-10
CVE-2026-2807 Memory safety bugs fixed in Firefox 148 and Thunderbird 148 9.8 -2026-02-24
CVE-2026-2806 Uninitialized memory in the Graphics: Text component 9.1 -2026-02-24
CVE-2026-2805 Invalid pointer in the DOM: Core & HTML component 7.5 -2026-02-24
CVE-2026-2804 Use-after-free in the JavaScript: WebAssembly component 9.8AICriticalAI2026-02-24
CVE-2026-2803 Information disclosure, mitigation bypass in the Settings UI component 7.5 -2026-02-24
CVE-2026-2802 Race condition in the JavaScript: GC component 8.1AIHighAI2026-02-24
CVE-2026-2801 Incorrect boundary conditions in the JavaScript: WebAssembly component 9.1 -2026-02-24
CVE-2026-2800 Spoofing issue in the WebAuthn component in Firefox for Android 6.5 -2026-02-24
CVE-2026-2799 Use-after-free in the DOM: Core & HTML component 9.1 -2026-02-24
CVE-2026-2798 Use-after-free in the DOM: Core & HTML component 9.1AICriticalAI2026-02-24
CVE-2026-2797 Use-after-free in the JavaScript: GC component 9.8 -2026-02-24
CVE-2026-2796 JIT miscompilation in the JavaScript: WebAssembly component 6.5 -2026-02-24
CVE-2026-2795 Use-after-free in the JavaScript: GC component 9.8 -2026-02-24
CVE-2026-2794 Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android 6.5 -2026-02-24
CVE-2026-2793 Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148 9.8 -2026-02-24
CVE-2026-2792 Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148 8.8 -2026-02-24
CVE-2026-2790 Same-origin policy bypass in the Networking: JAR component 9.1 -2026-02-24
CVE-2026-2791 Mitigation bypass in the Networking: Cache component 8.1 -2026-02-24
CVE-2026-2789 Use-after-free in the Graphics: ImageLib component 9.8 -2026-02-24
CVE-2026-2788 Incorrect boundary conditions in the Audio/Video: GMP component 8.1 -2026-02-24
CVE-2026-2787 Use-after-free in the DOM: Window and Location component 9.8 -2026-02-24
CVE-2026-2786 Use-after-free in the JavaScript Engine component 9.8 -2026-02-24
CVE-2026-2784 Mitigation bypass in the DOM: Security component 8.1 -2026-02-24
CVE-2026-2785 Invalid pointer in the JavaScript Engine component 8.1 -2026-02-24
CVE-2026-2783 Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component 6.5 -2026-02-24
CVE-2026-2782 Privilege escalation in the Netmonitor component 9.8 -2026-02-24

All 1233 known CVE vulnerabilities affecting Firefox with full Chinese analysis, references, and POCs where available.