📦

firefox

Vendor: mozilla

Actively Exploited 15 CISA KEV List

PoC / Exploits 141 Code Available

Total RCEs 463 Remote Access

Total CVEs 13484 Total Indexed

Avg. EPSS 3.68% Exploit Prob.

Latest CVE CVE-2026-10702 Jun 02

Security Vulnerability Index

Page 1 / 1349

4.3 CVSS

CVE-2026-10702

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 151.0.3.

EPSS: 0.03%

Severity: MEDIUM

Jun 02, 2026

7.5 CVSS

CVE-2026-10701

Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3.

EPSS: 0.03%

Severity: HIGH

Jun 02, 2026

5.4 CVSS

CVE-2026-9309

Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inject markup that changed Reader View behavior and leaked sensitive URL parameters. These parameters could then be used to access internal pages, potentially resulting in arbitrary JavaScript execution in an internal origin. This vulnerability was fixed in Firefox for iOS 151.2.

EPSS: 0.04%

Severity: MEDIUM

Jun 01, 2026

5.4 CVSS

CVE-2026-9308

Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malicious page could include a placeholder string that was later substituted with JSON-LD data, potentially resulting in arbitrary JavaScript execution. This vulnerability was fixed in Firefox for iOS 151.2.

EPSS: 0.04%

Severity: MEDIUM

Jun 01, 2026

0.0 CVSS

CVE-2026-9078

EPSS: 0.00%

Severity:

Jan 01, 0001

Displaying 5 of 13484 Total Entries

1 2 3 4 5 ... 1349

Total 1349 Sections