Total CVEs

126,186

Critical Severity

2,292

High Severity

7,951

Last 7 Days

1,204
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 2,361 - 2,380 of 22,591 CVEs
CVE-2026-6777 MEDIUM - 5.3

Other issue in the Networking: DNS component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6776 HIGH - 7.8

Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6775 MEDIUM - 5.3

Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6774 MEDIUM - 5.4

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6773 HIGH - 7.5

Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6772 HIGH - 7.5

Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6771 CRITICAL - 9.8

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6770 MEDIUM - 6.5

Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6769 MEDIUM - 6.5

Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6768 CRITICAL - 9.8

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6767 MEDIUM - 5.3

Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6766 HIGH - 7.5

Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6765 MEDIUM - 5.3

Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6764 MEDIUM - 6.5

Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6763 MEDIUM - 6.5

Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6762 MEDIUM - 6.3

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6761 MEDIUM - 6.5

Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6760 CRITICAL - 9.8

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6759 HIGH - 7.5

Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6758 HIGH - 7.5

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD