Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Firefox — Vulnerabilities & Security Advisories 1243

All 1243 CVE vulnerabilities found in Firefox, with AI-generated Chinese analysis, references, and POCs.

Vendor: Mozilla

CVE IDTitleCVSSSeverityPublished
CVE-2026-2761 Sandbox escape in the Graphics: WebRender component 9.8 -2026-02-24
CVE-2026-2760 Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component 9.8 -2026-02-24
CVE-2026-2759 Incorrect boundary conditions in the Graphics: ImageLib component 9.1 -2026-02-24
CVE-2026-2758 Use-after-free in the JavaScript: GC component 9.8 -2026-02-24
CVE-2026-2757 Incorrect boundary conditions in the WebRTC: Audio/Video component 6.5 -2026-02-24
CVE-2026-2447 Heap buffer overflow in libvpx 8.8AIHighAI2026-02-16
CVE-2026-24869 Use-after-free in the Layout: Scrolling and Overflow component 8.1AIHighAI2026-01-27
CVE-2026-24868 Mitigation bypass in the Privacy: Anti-Tracking component 6.5AIMediumAI2026-01-27
CVE-2026-0892 Memory safety bugs fixed in Firefox 147 and Thunderbird 147 9.8AICriticalAI2026-01-13
CVE-2026-0891 Memory safety bugs fixed in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147 8.8AIHighAI2026-01-13
CVE-2026-0889 Denial-of-service in the DOM: Service Workers component 6.5AIMediumAI2026-01-13
CVE-2026-0890 Spoofing issue in the DOM: Copy & Paste and Drag & Drop component 4.3AIMediumAI2026-01-13
CVE-2026-0888 Information disclosure in the XML component 7.5AIHighAI2026-01-13
CVE-2026-0887 Clickjacking issue, information disclosure in the PDF Viewer component 6.5AIMediumAI2026-01-13
CVE-2026-0886 Incorrect boundary conditions in the Graphics component 9.1AICriticalAI2026-01-13
CVE-2026-0884 Use-after-free in the JavaScript Engine component 9.8AICriticalAI2026-01-13
CVE-2026-0885 Use-after-free in the JavaScript: GC component 9.8AICriticalAI2026-01-13
CVE-2026-0883 Information disclosure in the Networking component 7.5AIHighAI2026-01-13
CVE-2026-0882 Use-after-free in the IPC component 9.8AICriticalAI2026-01-13
CVE-2026-0880 Sandbox escape due to integer overflow in the Graphics component 9.8AICriticalAI2026-01-13
CVE-2026-0881 Sandbox escape in the Messaging System component 10.0AICriticalAI2026-01-13
CVE-2026-0878 Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component 9.1AICriticalAI2026-01-13
CVE-2026-0879 Sandbox escape due to incorrect boundary conditions in the Graphics component 8.8AIHighAI2026-01-13
CVE-2026-0877 Mitigation bypass in the DOM: Security component 9.1AICriticalAI2026-01-13
CVE-2025-14861 Memory safety bugs fixed in Firefox 146.0.1 9.8AICriticalAI2025-12-18
CVE-2025-14860 Use-after-free in the Disability Access APIs component 8.8AIHighAI2025-12-18
CVE-2025-14333 Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 8.8AIHighAI2025-12-09
CVE-2025-14332 Memory safety bugs fixed in Firefox 146 and Thunderbird 146 9.8AICriticalAI2025-12-09
CVE-2025-14331 Same-origin policy bypass in the Request Handling component 9.1AICriticalAI2025-12-09
CVE-2025-14330 JIT miscompilation in the JavaScript Engine: JIT component 8.8AIHighAI2025-12-09

All 1243 known CVE vulnerabilities affecting Firefox with full Chinese analysis, references, and POCs where available.