Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Mozilla — Vulnerabilities & Security Advisories 1773

Browse all 1773 CVE security advisories affecting Mozilla. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Mozilla operates as a non-profit organization primarily known for developing the Firefox web browser and maintaining the Gecko rendering engine. Its software portfolio serves millions of users globally, focusing on open-source web technologies and privacy-centric browsing solutions. Historically, the codebase has been susceptible to a wide array of vulnerabilities, including remote code execution, cross-site scripting, and memory corruption issues such as buffer overflows. These flaws often stem from complex JavaScript engines and network stack implementations. While Mozilla maintains a robust security response team and regularly issues patches, the sheer volume of recorded Common Vulnerabilities and Exposures highlights the challenges inherent in maintaining large-scale, cross-platform applications. The organization continues to prioritize security audits and community-driven bug bounty programs to mitigate risks associated with its extensive feature set and widespread adoption.

Top products by Mozilla: Firefox Thunderbird Firefox ESR Firefox for iOS Firefox for Android Focus for iOS Thunderbird ESR nss Mozilla VPN Hubs Cloud WebThings Gateway Mozilla Bleach Focus sccache Nunjucks Convict PollBot Mozilla VPN 2.28.0 neqo rhino thin-vec common-voice Mozilla VPN 2.16.1 hawk geckodriver Mozilla VPN iOS 1.0.7 Firefox for Bugzilla Network Security Services (NSS) Network Security Services
CVE IDTitleCVSSSeverityPublished
CVE-2024-6608 Cursor could be moved out of the viewport using pointerlock. — Firefox 5.8AIMediumAI2024-07-09
CVE-2024-6605 Firefox Android missed activation delay to prevent tapjacking — Firefox 6.5AIMediumAI2024-07-09
CVE-2024-6606 Out-of-bounds read in clipboard component — Firefox 7.5AIHighAI2024-07-09
CVE-2024-6604 Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13 — Firefox 9.8AICriticalAI2024-07-09
CVE-2024-6603 Memory corruption in thread creation — Firefox 8.8AIHighAI2024-07-09
CVE-2024-6602 Memory corruption in NSS — Firefox 8.8AIHighAI2024-07-09
CVE-2024-6601 Race condition in permission assignment — Firefox 7.5AIHighAI2024-07-09
CVE-2024-6600 Memory corruption in WebGL API — Firefox 8.8AIHighAI2024-07-09
CVE-2024-38312 Mozilla Firefox 安全漏洞 — Firefox for iOS 5.3AIMediumAI2024-06-13
CVE-2024-38313 Mozilla Firefox 安全漏洞 — Firefox for iOS 4.3AIMediumAI2024-06-13
CVE-2024-5701 Mozilla Firefox 安全漏洞 — Firefox 9.8AICriticalAI2024-06-11
CVE-2024-5695 Mozilla Firefox 安全漏洞 — Firefox 8.1AIHighAI2024-06-11
CVE-2024-5697 Mozilla Firefox 安全漏洞 — Firefox 4.3AIMediumAI2024-06-11
CVE-2024-5699 Mozilla Firefox 安全漏洞 — Firefox 5.3AIMediumAI2024-06-11
CVE-2024-5698 Mozilla Firefox 安全漏洞 — Firefox 4.3AIMediumAI2024-06-11
CVE-2024-5689 Mozilla Firefox 安全漏洞 — Firefox 6.1AIMediumAI2024-06-11
CVE-2024-5687 Mozilla Firefox 安全漏洞 — Firefox 5.4AIMediumAI2024-06-11
CVE-2024-5694 Mozilla Firefox 安全漏洞 — Firefox 9.1AICriticalAI2024-06-11
CVE-2024-5700 Mozilla Firefox 安全漏洞 — Firefox 9.8 -2024-06-11
CVE-2024-5693 Mozilla Firefox 安全漏洞 — Firefox 5.3 -2024-06-11
CVE-2024-5696 Mozilla Firefox 安全漏洞 — Firefox 7.5 -2024-06-11
CVE-2024-5690 Mozilla Firefox 安全漏洞 — Firefox 6.5 -2024-06-11
CVE-2024-5692 Mozilla Firefox 安全漏洞 — Firefox 7.5 -2024-06-11
CVE-2024-5691 Mozilla Firefox 安全漏洞 — Firefox 4.3 -2024-06-11
CVE-2024-5702 Mozilla Firefox 安全漏洞 — Firefox 8.8 -2024-06-11
CVE-2024-5688 Mozilla Firefox 安全漏洞 — Firefox 8.8 -2024-06-11
CVE-2024-5022 Mozilla Focus 安全漏洞 — Focus for iOS 5.3 -2024-05-17
CVE-2024-4774 Mozilla Firefox 安全漏洞 — Firefox 9.8 -2024-05-14
CVE-2024-4775 Mozilla Firefox 安全漏洞 — Firefox 9.4 -2024-05-14
CVE-2024-4776 Mozilla Firefox 安全漏洞 — Firefox 5.3 -2024-05-14

This page lists every published CVE security advisory associated with Mozilla. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.