Where
-Infinity
0

Trending

Last week
Last month
Last year

Mozilla Firefox ESR20 vulnerabilities

Risk 33
Severity
7
First published (updated )
Advisory
MFSA2026-48

Same-origin policy bypass in the Networking: HTTP component

Risk 47
Severity
9.3
EPSS
0.02%
First published (updated )
CVE-2026-8950

Spoofing issue in the Form Autofill component

Risk 27
Severity
6.5
EPSS
0.03%
First published (updated )
CVE-2026-8961

Mitigation bypass in the DOM: Security component

Risk 42
Severity
8.1
EPSS
0.04%
First published (updated )
CVE-2026-8962

Incorrect boundary conditions in the Audio/Video: Web Codecs component

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2026-8946

Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component

Risk 31
Severity
7.5
EPSS
0.05%
First published (updated )
CVE-2026-8968

Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component

Risk 58
Severity
9.6
EPSS
0.08%
First published (updated )
CVE-2026-8959

Privilege escalation in the Security component

Risk 56
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2026-8970

Use-after-free in the DOM: Bindings (WebIDL) component

Risk 36
Severity
7.3
EPSS
0.05%
First published (updated )
CVE-2026-8947

Incorrect boundary conditions, integer overflow in the Audio/Video component

Risk 31
Severity
7.5
EPSS
0.03%
First published (updated )
CVE-2026-8954

Sandbox escape due to use-after-free in the Disability Access APIs component

Risk 58
Severity
9.6
EPSS
0.04%
First published (updated )
CVE-2026-8953

Privilege escalation in the DOM: Workers component

Risk 56
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2026-8955

Memory safety bugs fixed in Thunderbird 140.11 and Thunderbird 151

Risk 56
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2026-8974

Information disclosure, sandbox escape in the Security: Process Sandboxing component

Risk 34
Severity
8.6
EPSS
0.04%
First published (updated )
CVE-2026-8958

Memory safety bugs fixed in Thunderbird 140.11 and Thunderbird 151

Risk 56
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2026-8975

Privilege escalation in the Enterprise Policies component

Risk 56
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2026-8957

Integer overflow in the Networking: JAR component

Risk 61
Severity
9.8
EPSS
0.05%
First published (updated )
CVE-2026-8956

Integer overflow in the Widget: Win32 component

Risk 31
Severity
7.5
EPSS
0.05%
First published (updated )
CVE-2026-8949

Other issue in the JavaScript Engine component

Risk 19
Severity
5.3
EPSS
0.11%
First published (updated )
CVE-2026-8391

Incorrect boundary conditions in the JavaScript Engine: JIT component

Risk 28
Severity
6.5
EPSS
0.04%
First published (updated )
CVE-2026-8388

Sandbox escape in the Profile Backup component

Risk 61
Severity
9.8
EPSS
0.08%
First published (updated )
CVE-2026-8401

Mozilla Firefox ESR7 vulnerabilities

Risk 33
Severity
7
First published (updated )
Advisory
MFSA2026-47

Incorrect boundary conditions in the Audio/Video: Web Codecs component

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2026-8946

Use-after-free in the DOM: Bindings (WebIDL) component

Risk 36
Severity
7.3
EPSS
0.05%
First published (updated )
CVE-2026-8947

Sandbox escape due to use-after-free in the Disability Access APIs component

Risk 58
Severity
9.6
EPSS
0.04%
First published (updated )
CVE-2026-8953

Memory safety bugs fixed in Thunderbird 140.11 and Thunderbird 151

Risk 56
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2026-8975

Other issue in the JavaScript Engine component

Risk 19
Severity
5.3
EPSS
0.11%
First published (updated )
CVE-2026-8391

Incorrect boundary conditions in the JavaScript Engine: JIT component

Risk 28
Severity
6.5
EPSS
0.04%
First published (updated )
CVE-2026-8388

Sandbox escape in the Profile Backup component

Risk 61
Severity
9.8
EPSS
0.08%
First published (updated )
CVE-2026-8401

Mozilla Firefox ESR3 vulnerabilities

Risk 33
Severity
7
First published (updated )
Advisory
MFSA2026-41

Memory safety bugs fixed in Thunderbird ESR 140.10.2 and Thunderbird 150.0.2

Risk 54
Severity
8.1
EPSS
0.02%
First published (updated )
CVE-2026-8092

Use-after-free in the DOM: Networking component

Risk 36
Severity
7.3
EPSS
0.02%
First published (updated )
CVE-2026-8090

Other issue in the WebRTC component

Risk 61
Severity
9.8
EPSS
0.02%
First published (updated )
CVE-2026-8094

Mozilla Firefox ESR2 vulnerabilities

Risk 33
Severity
7
First published (updated )
Advisory
MFSA2026-42

Memory safety bugs fixed in Thunderbird ESR 140.10.2 and Thunderbird 150.0.2

Risk 54
Severity
8.1
EPSS
0.02%
First published (updated )
CVE-2026-8092

Use-after-free in the DOM: Networking component

Risk 36
Severity
7.3
EPSS
0.02%
First published (updated )
CVE-2026-8090

Mozilla Firefox ESRMemory safety bugs present in Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and Th…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2463481
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Mozilla FirefoxInformation disclosure due to incorrect boundary conditions in the Audio/Video component. This vulne…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2463483

Mozilla Firefox ESRMemory safety bugs present in Firefox ESR 115.35.0, Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, …

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2463484

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203