Search CVE reports

Toggle filters

121 – 130 of 536 results

CVE-2026-2763

Medium priority
Vulnerable

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2762

Medium priority
Vulnerable

Integer overflow in the JavaScript: Standard Library component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2761

Medium priority
Vulnerable

Sandbox escape in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2760

Medium priority
Vulnerable

Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2759

Medium priority
Vulnerable

Incorrect boundary conditions in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2758

Medium priority
Vulnerable

Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2757

Medium priority
Vulnerable

Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

9 affected packages

mozjs38, firefox, thunderbird, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs38 Not in release Not in release Needs evaluation
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2634

Medium priority
Ignored

Malicious scripts could cause desynchronization between the address bar and web content before a response is received in Firefox iOS, allowing attacker-controlled pages to be presented under spoofed domains. This vulnerability was...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Not affected
mozjs38 Not in release Not in release Not affected
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-2032

Medium priority
Vulnerable

Malicious scripts that interrupt new tab page loading could cause desynchronization between the address bar and page content, allowing the attacker to spoof arbitrary HTML under a trusted domain. This vulnerability was fixed in...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Vulnerable
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages

CVE-2026-0892

Medium priority
Needs evaluation

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected Not affected
thunderbird Not affected Not affected
mozjs38 Not in release Not in release Needs evaluation
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored
mozjs78 Not in release Ignored
mozjs91 Not in release Ignored
mozjs102 Ignored Ignored
mozjs115 Ignored Not in release
Show all 9 packages Show less packages
  1. Previous page
  2. 11
  3. 12
  4. 13
  5. 14
  6. 15
  7. Next page
Export to JSON