Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Firefox — Vulnerabilities & Security Advisories 1243

All 1243 CVE vulnerabilities found in Firefox, with AI-generated Chinese analysis, references, and POCs.

Vendor: Mozilla

CVE IDTitleCVSSSeverityPublished
CVE-2026-4694 Incorrect boundary conditions, integer overflow in the Graphics component 8.8 -2026-03-24
CVE-2026-4692 Sandbox escape in the Responsive Design Mode component 10.0 -2026-03-24
CVE-2026-4693 Incorrect boundary conditions in the Audio/Video: Playback component 8.1 -2026-03-24
CVE-2026-4690 Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component 8.8 -2026-03-24
CVE-2026-4691 Use-after-free in the CSS Parsing and Computation component 9.8 -2026-03-24
CVE-2026-4689 Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component 8.8 -2026-03-24
CVE-2026-4688 Sandbox escape due to use-after-free in the Disability Access APIs component 9.8 -2026-03-24
CVE-2026-4686 Incorrect boundary conditions in the Graphics: Canvas2D component 9.1 -2026-03-24
CVE-2026-4687 Sandbox escape due to incorrect boundary conditions in the Telemetry component 8.8 -2026-03-24
CVE-2026-4685 Incorrect boundary conditions in the Graphics: Canvas2D component 9.1 -2026-03-24
CVE-2026-4684 Race condition, use-after-free in the Graphics: WebRender component 8.1 -2026-03-24
CVE-2026-3847 Memory safety bugs fixed in Firefox 148.0.2 8.8AIHighAI2026-03-10
CVE-2026-3846 Same-origin policy bypass in the CSS Parsing and Computation component 9.8AICriticalAI2026-03-10
CVE-2026-3845 Heap buffer overflow in the Audio/Video: Playback component in Firefox for Android 8.8AIHighAI2026-03-10
CVE-2026-2807 Memory safety bugs fixed in Firefox 148 and Thunderbird 148 9.8 -2026-02-24
CVE-2026-2805 Invalid pointer in the DOM: Core & HTML component 7.5 -2026-02-24
CVE-2026-2806 Uninitialized memory in the Graphics: Text component 9.1 -2026-02-24
CVE-2026-2804 Use-after-free in the JavaScript: WebAssembly component 9.8AICriticalAI2026-02-24
CVE-2026-2803 Information disclosure, mitigation bypass in the Settings UI component 7.5 -2026-02-24
CVE-2026-2802 Race condition in the JavaScript: GC component 8.1AIHighAI2026-02-24
CVE-2026-2801 Incorrect boundary conditions in the JavaScript: WebAssembly component 9.1 -2026-02-24
CVE-2026-2800 Spoofing issue in the WebAuthn component in Firefox for Android 6.5 -2026-02-24
CVE-2026-2799 Use-after-free in the DOM: Core & HTML component 9.1 -2026-02-24
CVE-2026-2798 Use-after-free in the DOM: Core & HTML component 9.1AICriticalAI2026-02-24
CVE-2026-2797 Use-after-free in the JavaScript: GC component 9.8 -2026-02-24
CVE-2026-2796 JIT miscompilation in the JavaScript: WebAssembly component 6.5 -2026-02-24
CVE-2026-2795 Use-after-free in the JavaScript: GC component 9.8 -2026-02-24
CVE-2026-2794 Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android 6.5 -2026-02-24
CVE-2026-2793 Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148 9.8 -2026-02-24
CVE-2026-2792 Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148 8.8 -2026-02-24

All 1243 known CVE vulnerabilities affecting Firefox with full Chinese analysis, references, and POCs where available.