Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 10 of 78
CVE-2021-24002P3HIGHCVSS 8.8fixed in firefox 88.0-1 (sid)2021
CVE-2021-24002 [HIGH] CVE-2021-24002: firefox - When a user clicked on an FTP URL containing encoded newline characters (%0A and...
When a user clicked on an FTP URL containing encoded newline characters (%0A and %0D), the newlines would have been interpreted as such and allowed arbitrary commands to be sent to the FTP server. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
Scope: local
sid: resolved (fixed in 88.0-1)
debian
CVE-2026-4715P3CRITICALCVSS 9.1fixed in firefox 149.0-1 (sid)2026
CVE-2026-4715 [CRITICAL] CVE-2026-4715: firefox - Uninitialized memory in the Graphics: Canvas2D component. This vulnerability aff...
Uninitialized memory in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.
Scope: local
sid: resolved (fixed in 149.0-1)
debian
CVE-2026-4716P3CRITICALCVSS 9.1fixed in firefox 149.0-1 (sid)2026
CVE-2026-4716 [CRITICAL] CVE-2026-4716: firefox - Incorrect boundary conditions, uninitialized memory in the JavaScript Engine com...
Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.
Scope: local
sid: resolved (fixed in 149.0-1)
debian
CVE-2025-4083P3CRITICALCVSS 9.1fixed in firefox 138.0-1 (sid)2025
CVE-2025-4083 [CRITICAL] CVE-2025-4083: firefox - A process isolation vulnerability in Thunderbird stemmed from improper handling ...
A process isolation vulnerability in Thunderbird stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended frame, potentially enabling a sandbox escape. This vulnerability affects Firefox < 138, Firefox ESR < 128.10, Firefox ESR < 115.23, Thunderbird < 138, and Thunderbird <
debian
CVE-2026-4724P3CRITICALCVSS 9.1fixed in firefox 149.0-1 (sid)2026
CVE-2026-4724 [CRITICAL] CVE-2026-4724: firefox - Undefined behavior in the Audio/Video component. This vulnerability affects Fire...
Undefined behavior in the Audio/Video component. This vulnerability affects Firefox < 149 and Thunderbird < 149.
Scope: local
sid: resolved (fixed in 149.0-1)
debian
CVE-2020-15254P3HIGHCVSS 8.1fixed in firefox 82.0-1 (sid)2020
CVE-2020-15254 [HIGH] CVE-2020-15254: firefox - Crossbeam is a set of tools for concurrent programming. In crossbeam-channel bef...
Crossbeam is a set of tools for concurrent programming. In crossbeam-channel before version 0.4.4, the bounded channel incorrectly assumes that `Vec::from_iter` has allocated capacity that same as the number of iterator elements. `Vec::from_iter` does not actually guarantee that and may allocate extra memory. The destructor of the `bounded` channel reconstructs `Vec
debian
CVE-2022-22756P3HIGHCVSS 8.8fixed in firefox 97.0-1 (sid)2022
CVE-2022-22756 [HIGH] CVE-2022-22756: firefox - If a user was convinced to drag and drop an image to their desktop or other fold...
If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script which would have run arbitrary code after the user clicked on it. This vulnerability affects Firefox < 97, Thunderbird < 91.6, and Firefox ESR < 91.6.
Scope: local
sid: resolved (fixed in 97.0-1)
debian
CVE-2023-0767P3HIGHCVSS 8.8fixed in firefox 110.0-1 (sid)2023
CVE-2023-0767 [HIGH] CVE-2023-0767: firefox - An attacker could construct a PKCS 12 cert bundle in such a way that could allow...
An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.
Scope: local
sid: resolved (fixed in 110.0-1)
debian
CVE-2026-2447P3LOWCVSS 8.8fixed in firefox 147.0.4-1 (sid)2026
CVE-2026-2447 [HIGH] CVE-2026-2447: firefox - Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Fi...
Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.
Scope: local
sid: resolved (fixed in 147.0.4-1)
debian
CVE-2017-5390P3CRITICALCVSS 9.8fixed in firefox 51.0-1 (sid)2017
CVE-2017-5390 [CRITICAL] CVE-2017-5390: firefox - The JSON viewer in the Developer Tools uses insecure methods to create a communi...
The JSON viewer in the Developer Tools uses insecure methods to create a communication channel for copying and viewing JSON or HTTP headers data, allowing for potential privilege escalation. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
Scope: local
sid: resolved (fixed in 51.0-1)
debian
CVE-2025-14329P3HIGHCVSS 8.8fixed in firefox 146.0-1 (sid)2025
CVE-2025-14329 [HIGH] CVE-2025-14329: firefox - Privilege escalation in the Netmonitor component. This vulnerability affects Fir...
Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.
Scope: local
sid: resolved (fixed in 146.0-1)
debian
CVE-2025-14328P3HIGHCVSS 8.8fixed in firefox 146.0-1 (sid)2025
CVE-2025-14328 [HIGH] CVE-2025-14328: firefox - Privilege escalation in the Netmonitor component. This vulnerability affects Fir...
Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.
Scope: local
sid: resolved (fixed in 146.0-1)
debian
CVE-2026-4722P3HIGHCVSS 8.8fixed in firefox 149.0-1 (sid)2026
CVE-2026-4722 [HIGH] CVE-2026-4722: firefox - Privilege escalation in the IPC component. This vulnerability affects Firefox < ...
Privilege escalation in the IPC component. This vulnerability affects Firefox < 149 and Thunderbird < 149.
Scope: local
sid: resolved (fixed in 149.0-1)
debian
CVE-2026-3847P3HIGHCVSS 8.8fixed in firefox 148.0.2-1 (sid)2026
CVE-2026-3847 [HIGH] CVE-2026-3847: firefox - Memory safety bugs present in Firefox 148.0.2. Some of these bugs showed evidenc...
Memory safety bugs present in Firefox 148.0.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 148.0.2.
Scope: local
sid: resolved (fixed in 148.0.2-1)
debian
CVE-2025-8040P3HIGHCVSS 8.8fixed in firefox 141.0-1 (sid)2025
CVE-2025-8040 [HIGH] CVE-2025-8040: firefox - Memory safety bugs present in Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox ...
Memory safety bugs present in Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1.
debian
CVE-2025-14861P3HIGHCVSS 8.8fixed in firefox 146.0.1-1 (sid)2025
CVE-2025-14861 [HIGH] CVE-2025-14861: firefox - Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of...
Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 146.0.1.
Scope: local
sid: resolved (fixed in 146.0.1-1)
debian
CVE-2016-9901P3CRITICALCVSS 9.8fixed in firefox 50.1.0-1 (sid)2016
CVE-2016-9901 [CRITICAL] CVE-2016-9901: firefox - HTML tags received from the Pocket server will be processed without sanitization...
HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1.
Scope: local
sid: resolved (fixed in 50.1.0-1)
debian
CVE-2024-2607P3HIGHCVSS 8.1fixed in firefox 124.0-1 (sid)2024
CVE-2024-2607 [HIGH] CVE-2024-2607: firefox - Return registers were overwritten which could have allowed an attacker to execut...
Return registers were overwritten which could have allowed an attacker to execute arbitrary code. *Note:* This issue only affected Armv7-A systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.
Scope: local
sid: resolved (fixed in 124.0-1)
debian
CVE-2024-5688P3HIGHCVSS 8.1fixed in firefox 127.0-1 (sid)2024
CVE-2024-5688 [HIGH] CVE-2024-5688: firefox - If a garbage collection was triggered at the right time, a use-after-free could ...
If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.
Scope: local
sid: resolved (fixed in 127.0-1)
debian
CVE-2016-9075P3CRITICALCVSS 9.8fixed in firefox 50.0-1 (sid)2016
CVE-2016-9075 [CRITICAL] CVE-2016-9075: firefox - An issue where WebExtensions can use the mozAddonManager API to elevate privileg...
An issue where WebExtensions can use the mozAddonManager API to elevate privilege due to privileged pages being allowed in the permissions list. This allows a malicious extension to then install additional extensions without explicit user permission. This vulnerability affects Firefox < 50.
Scope: local
sid: resolved (fixed in 50.0-1)
debian