Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Mozilla — Vulnerabilities & Security Advisories 1773

Browse all 1773 CVE security advisories affecting Mozilla. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Mozilla operates as a non-profit organization primarily known for developing the Firefox web browser and maintaining the Gecko rendering engine. Its software portfolio serves millions of users globally, focusing on open-source web technologies and privacy-centric browsing solutions. Historically, the codebase has been susceptible to a wide array of vulnerabilities, including remote code execution, cross-site scripting, and memory corruption issues such as buffer overflows. These flaws often stem from complex JavaScript engines and network stack implementations. While Mozilla maintains a robust security response team and regularly issues patches, the sheer volume of recorded Common Vulnerabilities and Exposures highlights the challenges inherent in maintaining large-scale, cross-platform applications. The organization continues to prioritize security audits and community-driven bug bounty programs to mitigate risks associated with its extensive feature set and widespread adoption.

Found 46 results / 1773Clear Filters
Top products by Mozilla: Firefox Thunderbird Firefox ESR Firefox for iOS Firefox for Android Focus for iOS Thunderbird ESR nss Mozilla VPN Hubs Cloud WebThings Gateway Mozilla Bleach Focus sccache Nunjucks Convict PollBot Mozilla VPN 2.28.0 neqo rhino thin-vec common-voice Mozilla VPN 2.16.1 hawk geckodriver Mozilla VPN iOS 1.0.7 Firefox for Bugzilla Network Security Services (NSS) Network Security Services
CVE IDTitleCVSSSeverityPublished
CVE-2026-2634 Spoofed web content presented under trusted domains using scripted navigation on Firefox iOS — Firefox for iOS 6.5 -2026-02-24
CVE-2026-2032 Interrupted page loads in new tabs could allow website spoofing under trusted domains in Firefox iOS — Firefox for iOS 6.5AIMediumAI2026-02-16
CVE-2025-14744 Filename spoofing via Unicode Right-to-Left Override in Firefox for iOS — Firefox for iOS 4.3AIMediumAI2025-12-18
CVE-2025-10859 Data stored in cookies for non-HTML content while browsing Incognito could be viewed after closing private tabs — Firefox for iOS 6.5AIMediumAI2025-09-30
CVE-2025-55031 Passkey phishing within Bluetooth range — Firefox for iOS 7.3 -2025-08-19
CVE-2025-55029 Malicious scripts could spam popups for denial of service attacks — Firefox for iOS 6.5 -2025-08-19
CVE-2025-55028 JavaScript alerts could impede UI interaction or allow denial of service attacks — Firefox for iOS 6.5 -2025-08-19
CVE-2025-55030 Content-Disposition headers incorrectly ignored for some MIME types — Firefox for iOS 6.1 -2025-08-19
CVE-2025-54145 Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites — Firefox for iOS 8.1 -2025-08-19
CVE-2025-54144 Internal Firefox open-text URL scheme allowed loading of arbitrary URLs — Firefox for iOS 6.5 -2025-08-19
CVE-2025-54143 Sandboxed iframes could allow local downloads despite sandbox restrictions — Firefox for iOS 9.3 -2025-08-19
CVE-2025-5020 Links using non-HTTP schemes opened from other apps such as Safari could have allowed spoofing of website addresses — Firefox for iOS 6.5AIMediumAI2025-05-21
CVE-2025-27425 QR code user confirmation bypass with invalid protocol — Firefox for iOS 4.3 -2025-03-04
CVE-2025-27424 Firefox Mobile iOS Address Bar Spoof Using Server-Side Redirect to non-http Scheme — Firefox for iOS 4.3 -2025-03-04
CVE-2025-27426 Firefox Mobile iOS Full Address Bar Spoof Using Server-Side Redirect to internal error page — Firefox for iOS 4.7 -2025-03-04
CVE-2025-23109 Address bar spoofing on iOS using long hostnames — Firefox for iOS 4.3 -2025-01-11
CVE-2025-23108 Firefox Mobile iOS Full Address Bar Spoof Using Open in New Tab and Javascript URI — Firefox for iOS 4.3 -2025-01-11
CVE-2024-53976 Mozilla Firefox 安全漏洞 — Firefox for iOS--AI2024-11-26
CVE-2024-53975 Mozilla Firefox 安全漏洞 — Firefox for iOS 7.5AIHighAI2024-11-26
CVE-2024-10004 Mozilla Firefox 安全漏洞 — Firefox for iOS--2024-10-15
CVE-2024-43111 Mozilla Firefox 安全漏洞 — Firefox for iOS 6.1AIMediumAI2024-08-06
CVE-2024-43113 Mozilla Firefox 安全漏洞 — Firefox for iOS 6.1AIMediumAI2024-08-06
CVE-2024-43112 Mozilla Firefox 安全漏洞 — Firefox for iOS 6.1AIMediumAI2024-08-06
CVE-2024-38312 Mozilla Firefox 安全漏洞 — Firefox for iOS 5.3AIMediumAI2024-06-13
CVE-2024-38313 Mozilla Firefox 安全漏洞 — Firefox for iOS 4.3AIMediumAI2024-06-13
CVE-2024-31392 Mozilla Firefox 安全漏洞 — Firefox for iOS 4.3 -2024-04-03
CVE-2024-31393 Mozilla Firefox 安全漏洞 — Firefox for iOS 6.5 -2024-04-03
CVE-2024-26281 Mozilla Firefox 安全漏洞 — Firefox for iOS 8.1 -2024-02-22
CVE-2024-26282 Mozilla Firefox 安全漏洞 — Firefox for iOS 6.1 -2024-02-22
CVE-2024-26283 Mozilla Firefox 安全漏洞 — Firefox for iOS 8.2 -2024-02-22

This page lists every published CVE security advisory associated with Mozilla. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.