CVE-2010-3765CISA KEVEPSS p99.6%

CVE-2010-3765Mozilla Multiple Products Remote Code Execution Vulnerability

Mozilla / Multiple Products

Description

Mozilla Firefox, SeaMonkey, and Thunderbird contain an unspecified vulnerability when JavaScript is enabled. This allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of multiple frames, which triggers memory corruption.

Scoring

EPSS83.28% probability of exploitation · percentile 99.6% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2025-10-06

(incoming)1

TypeTargetConfidenceTier
KEVEntryMozilla Multiple Products Remote Code Execution Vulnerabilitykev-cve-2010-37650%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-1020
CVE
CVE-2025-6436
CVE
CVE-2026-5735
CVE
CVE-2025-1011
CVE
CVE-2025-4091
CVE
CVE-2025-1017
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.