Filter
-Infinity
0

BleepingComputerMozilla fixes Firefox zero-days exploited at hacking contest

First published (updated )

BleepingComputerHackers earn $1,078,750 for 28 zero-days at Pwn2Own Berlin

First published (updated )

Firefox ESR2 vulnerabilities

First published (updated )

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing a…

8.8
EPSS
0.02%
First published (updated )

An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object.

7.5
EPSS
0.02%
First published (updated )

Firefox ESR2 vulnerabilities

First published (updated )

Rejected reason: Duplicate of CVE-2025-4918

EPSS
0.02%
First published (updated )

Rejected reason: Duplicate of CVE-2025-4919

EPSS
0.02%
First published (updated )

Firefox2 vulnerabilities

First published (updated )

Rejected reason: Duplicate of CVE-2025-4918

EPSS
0.02%
First published (updated )

Rejected reason: Duplicate of CVE-2025-4919

EPSS
0.02%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Thunderbird4 vulnerabilities

First published (updated )

Infoleak

First published (updated )

It was possible to craft an email that showed a tracking link as an attachment. If the user attempte…

First published (updated )

Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an in…

7.5
First published (updated )

Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute J…

First published (updated )

Thunderbird4 vulnerabilities

First published (updated )

Infoleak

First published (updated )

It was possible to craft an email that showed a tracking link as an attachment. If the user attempte…

First published (updated )

Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an in…

7.5
First published (updated )

Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute J…

First published (updated )

ZDNetYour password manager is under attack: How to defend yourself against a new threat

First published (updated )
News
ZDNet

FirefoxMozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYS…

First published (updated )

FirefoxMemory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

FirefoxA process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…

First published (updated )

Firefox ESRMemory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of m…

First published (updated )

FirefoxA vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due t…

First published (updated )

FirefoxMemory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9…

First published (updated )

Firefox ESRModification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when ch…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

FirefoxA security vulnerability in Firefox allowed malicious sites to use redirects to send credentialed re…

First published (updated )

Firefox ESRA vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due t…

First published (updated )

FirefoxDue to insufficient escaping of special characters in the "copy as cURL" feature, an attacker could …

First published (updated )

Firefox ESRDue to insufficient escaping of the special characters in the "copy as cURL" feature, an attacker co…

First published (updated )

ThunderbirdAn attacker with control over a content process could potentially leverage the privileged UITour act…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Mozilla ThunderbirdMemory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of m…

First published (updated )

ThunderbirdMemory safety bugs present in Firefox 137 and Thunderbird 137. Some of these bugs showed evidence of…

First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203