Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Firefox — Vulnerabilities & Security Advisories 1233

All 1233 CVE vulnerabilities found in Firefox, with AI-generated Chinese analysis, references, and POCs.

Vendor: Mozilla

CVE IDTitleCVSSSeverityPaused
CVE-2025-13019 Same-origin policy bypass in the DOM: Workers component 9.1 -2025-11-11
CVE-2025-13020 Use-after-free in the WebRTC: Audio/Video component 9.8 -2025-11-11
CVE-2025-13017 Same-origin policy bypass in the DOM: Notifications component 9.1 -2025-11-11
CVE-2025-13018 Mitigation bypass in the DOM: Security component 8.1 -2025-11-11
CVE-2025-13026 Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component 9.1 -2025-11-11
CVE-2025-13024 JIT miscompilation in the JavaScript Engine: JIT component 8.1 -2025-11-11
CVE-2025-13025 Incorrect boundary conditions in the Graphics: WebGPU component 9.1 -2025-11-11
CVE-2025-13016 Incorrect boundary conditions in the JavaScript: WebAssembly component 9.1 -2025-11-11
CVE-2025-13022 Incorrect boundary conditions in the Graphics: WebGPU component 9.1 -2025-11-11
CVE-2025-13023 Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component 9.1 -2025-11-11
CVE-2025-13015 Spoofing issue in Firefox 4.3 -2025-11-11
CVE-2025-13021 Incorrect boundary conditions in the Graphics: WebGPU component 9.1 -2025-11-11
CVE-2025-13014 Use-after-free in the Audio/Video component 9.8 -2025-11-11
CVE-2025-13013 Mitigation bypass in the DOM: Core & HTML component 8.2 -2025-11-11
CVE-2025-13012 Race condition in the Graphics component 7.5 -2025-11-11
CVE-2025-12380 Use-after-free in WebGPU internals triggered from a compromised child process 10.0AICriticalAI2025-10-28
CVE-2025-11720 Spoofing risk in Android custom tabs 4.3AIMediumAI2025-10-14
CVE-2025-11718 Address bar could be spoofed on Android using visibilitychange 4.3AIMediumAI2025-10-14
CVE-2025-11717 The password edit screen was not hidden in Android card view 5.3AIMediumAI2025-10-14
CVE-2025-11716 Sandboxed iframes allowed links to open in external apps (Android only) 5.4AIMediumAI2025-10-14
CVE-2025-11719 Use-after-free caused by the native messaging web extension API on Windows 7.5AIHighAI2025-10-14
CVE-2025-11721 Memory safety bug fixed in Firefox 144 and Thunderbird 144 8.8AIHighAI2025-10-14
CVE-2025-11713 Potential user-assisted code execution in “Copy as cURL” command 8.8AIHighAI2025-10-14
CVE-2025-11715 Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 8.8AIHighAI2025-10-14
CVE-2025-11712 An OBJECT tag type attribute overrode browser behavior on web resources without a content-type 6.1AIMediumAI2025-10-14
CVE-2025-11714 Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 9.8AICriticalAI2025-10-14
CVE-2025-11708 Use-after-free in MediaTrackGraphImpl::GetInstance() 9.8AICriticalAI2025-10-14
CVE-2025-11710 Cross-process information leaked due to malicious IPC messages 6.5AIMediumAI2025-10-14
CVE-2025-11711 Some non-writable Object properties could be modified 8.1AIHighAI2025-10-14
CVE-2025-11709 Out of bounds read/write in a privileged process triggered by WebGL textures 9.8AICriticalAI2025-10-14

All 1233 known CVE vulnerabilities affecting Firefox with full Chinese analysis, references, and POCs where available.