Browse all 1773 CVE security advisories affecting Mozilla. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mozilla operates as a non-profit organization primarily known for developing the Firefox web browser and maintaining the Gecko rendering engine. Its software portfolio serves millions of users globally, focusing on open-source web technologies and privacy-centric browsing solutions. Historically, the codebase has been susceptible to a wide array of vulnerabilities, including remote code execution, cross-site scripting, and memory corruption issues such as buffer overflows. These flaws often stem from complex JavaScript engines and network stack implementations. While Mozilla maintains a robust security response team and regularly issues patches, the sheer volume of recorded Common Vulnerabilities and Exposures highlights the challenges inherent in maintaining large-scale, cross-platform applications. The organization continues to prioritize security audits and community-driven bug bounty programs to mitigate risks associated with its extensive feature set and widespread adoption.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-4421 | Red Hat Enterprise Linux 安全漏洞 — NSS | 5.9 | - | 2023-12-12 |
| CVE-2021-43527 | Mozilla Network Security Services 缓冲区错误漏洞 — NSS | 9.8 | - | 2021-12-08 |
| CVE-2019-17007 | Network Security Services和NSS 信任管理问题漏洞 — NSS | 7.5 | - | 2020-10-22 |
| CVE-2019-17006 | Mozilla NSS 数据伪造问题漏洞 — NSS | 9.8 | - | 2020-10-22 |
| CVE-2018-18508 | Network Security Services 代码问题漏洞 — NSS | 6.5 | - | 2020-10-22 |
| CVE-2016-8635 | Mozilla Network Security Services 信息泄露漏洞 — nssCWE-358 | 5.9 | - | 2018-08-01 |
This page lists every published CVE security advisory associated with Mozilla. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.