Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Firefox — Vulnerabilities & Security Advisories 1243

All 1243 CVE vulnerabilities found in Firefox, with AI-generated Chinese analysis, references, and POCs.

Vendor: Mozilla

CVE IDTitleCVSSSeverityPublished
CVE-2025-11719 Use-after-free caused by the native messaging web extension API on Windows 7.5AIHighAI2025-10-14
CVE-2025-11721 Memory safety bug fixed in Firefox 144 and Thunderbird 144 8.8AIHighAI2025-10-14
CVE-2025-11713 Potential user-assisted code execution in “Copy as cURL” command 8.8AIHighAI2025-10-14
CVE-2025-11712 An OBJECT tag type attribute overrode browser behavior on web resources without a content-type 6.1AIMediumAI2025-10-14
CVE-2025-11715 Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 8.8AIHighAI2025-10-14
CVE-2025-11708 Use-after-free in MediaTrackGraphImpl::GetInstance() 9.8AICriticalAI2025-10-14
CVE-2025-11714 Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 9.8AICriticalAI2025-10-14
CVE-2025-11709 Out of bounds read/write in a privileged process triggered by WebGL textures 9.8AICriticalAI2025-10-14
CVE-2025-11710 Cross-process information leaked due to malicious IPC messages 6.5AIMediumAI2025-10-14
CVE-2025-11711 Some non-writable Object properties could be modified 8.1AIHighAI2025-10-14
CVE-2025-11153 JIT miscompilation in the JavaScript Engine: JIT component 6.5AIMediumAI2025-09-30
CVE-2025-11152 Sandbox escape due to integer overflow in the Graphics: Canvas2D component 6.5AIMediumAI2025-09-30
CVE-2025-10535 Information disclosure, mitigation bypass in the Privacy component in Firefox for Android 8.1AIHighAI2025-09-16
CVE-2025-10534 Spoofing issue in the Site Permissions component 8.1AIHighAI2025-09-16
CVE-2025-10530 Spoofing issue in the WebAuthn component in Firefox for Android 8.1AIHighAI2025-09-16
CVE-2025-10531 Mitigation bypass in the Web Compatibility: Tooling component 8.1AIHighAI2025-09-16
CVE-2025-10536 Information disclosure in the Networking: Cache component 8.1AIHighAI2025-09-16
CVE-2025-10537 Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 9.8AICriticalAI2025-09-16
CVE-2025-10532 Incorrect boundary conditions in the JavaScript: GC component 8.1AIHighAI2025-09-16
CVE-2025-10529 Same-origin policy bypass in the Layout component 8.1AIHighAI2025-09-16
CVE-2025-10528 Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component 8.1AIHighAI2025-09-16
CVE-2025-10527 Sandbox escape due to use-after-free in the Graphics: Canvas2D component 8.1AIHighAI2025-09-16
CVE-2025-10533 Integer overflow in the SVG component 8.1AIHighAI2025-09-16
CVE-2025-8042 Sandboxed iframe could start downloads 9.3 -2025-08-19
CVE-2025-8364 Address bar spoofing using an blob URI on Firefox for Android 4.3 -2025-08-19
CVE-2025-8041 Incorrect URL truncation in Firefox for Android 4.3 -2025-08-19
CVE-2025-9184 Memory safety bugs fixed in Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142 9.8 -2025-08-19
CVE-2025-9187 Memory safety bugs fixed in Firefox 142 and Thunderbird 142 9.8 -2025-08-19
CVE-2025-9183 Spoofing issue in the Address Bar component 4.3 -2025-08-19
CVE-2025-9182 Denial-of-service due to out-of-memory in the Graphics: WebRender component 6.5 -2025-08-19

All 1243 known CVE vulnerabilities affecting Firefox with full Chinese analysis, references, and POCs where available.