SecAlerts
CVE ListPricingSign Up
Mozilla logo

Mozilla

Security Risk Profile

38
/100
low

Security Risk Score

Comprehensive risk assessment based on 1000 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from September 17, 2024 to present

1000
Total CVEs
643
Critical+High
8
Exploited
140
Unpatched

Threat Assessment

Avg CVSS
6.8
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
140
Critical/High
Risk Level
38/100
low
⚠️ 8 Active Exploits 9 Zero-Days🆕 42Fresh (<7d)📈 72 in Last 30 Days

Severity Distribution

Critical
168
High
475
Medium
265
Low
37

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
337

Age Distribution

Common Weaknesses (CWE)

1
Use After Free
108
2
Buffer Overflow
65
3
Integer Overflow
28
4
Infoleak
23
5
XSS
17

Most Affected Products

1. Mozilla Firefox1802
2. Mozilla Thunderbird1546
3. Mozilla Firefox ESR874
4. debian/firefox62
5. debian/firefox-esr44

Recent Vulnerabilities

See more →
https://seclists.org/oss-sec/2026/q2/632
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/20/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/621
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/20/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/610
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/19/2026🔧 No Patch
CVE-2026-8950
CVSS 9.3EPSS 0%critical

Same-origin policy bypass in the Networking: HTTP component

5/19/2026
CVE-2026-8961
CVSS 6.5EPSS 0%medium

Spoofing issue in the Form Autofill component

5/19/2026
CVE-2026-8945
CVSS 7.5EPSS 0%high

Sandbox escape in Firefox and Firefox Focus for Android

5/19/2026
CVE-2026-8962
CVSS 8.1EPSS 0%high

Mitigation bypass in the DOM: Security component

5/19/2026
CVE-2026-8946
CVSS 7.5EPSS 0%high

Incorrect boundary conditions in the Audio/Video: Web Codecs component

5/19/2026
CVE-2026-8968
CVSS 7.5EPSS 0%high

Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component

5/19/2026
CVE-2026-8951
CVSS 6.5EPSS 0%medium

Spoofing issue in the Toolbar component in Firefox for Android

5/19/2026

Monitor Mozilla in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.

Mozilla Security Vulnerabilities & Risk Score | 1000 CVEs | SecAlerts - SecAlerts