Total CVEs

143,208

Critical Severity

4,054

High Severity

14,598

Last 7 Days

1,280
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 19,381 - 19,400 of 39,613 CVEs
CVE-2026-6779 MEDIUM - 5.3

Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6778 MEDIUM - 5.3

Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6777 MEDIUM - 5.3

Other issue in the Networking: DNS component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6776 HIGH - 7.8

Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6775 MEDIUM - 5.3

Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6774 MEDIUM - 5.4

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6773 HIGH - 7.5

Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6772 HIGH - 7.5

Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6771 CRITICAL - 9.8

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6770 MEDIUM - 6.5

Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6769 MEDIUM - 6.5

Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6768 CRITICAL - 9.8

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6767 MEDIUM - 5.3

Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6766 HIGH - 7.5

Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6765 MEDIUM - 5.3

Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6764 MEDIUM - 6.5

Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6763 MEDIUM - 6.5

Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6762 MEDIUM - 6.3

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6761 MEDIUM - 6.5

Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD
CVE-2026-6760 CRITICAL - 9.8

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Vendor: mozilla
Product: firefox
Published: Apr 21, 2026
Source: NVD