cbcvebase.

Debian Firefox vulnerabilities

1,550 known vulnerabilities affecting debian/firefox.

Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42

Vulnerabilities

Page 16 of 78
CVE-2025-1020P3CRITICALCVSS 9.8fixed in firefox 135.0-1 (sid)2025
CVE-2025-1020 [CRITICAL] CVE-2025-1020: firefox - Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bug... Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 135 and Thunderbird < 135. Scope: local sid: resolved (fixed in 135.0-1)
debian
CVE-2016-1973P3HIGHCVSS 8.8fixed in firefox 45.0-1 (sid)2016
CVE-2016-1973 [HIGH] CVE-2016-1973: firefox - Race condition in the GetStaticInstance function in the WebRTC implementation in... Race condition in the GetStaticInstance function in the WebRTC implementation in Mozilla Firefox before 45.0 might allow remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via unspecified vectors. Scope: local sid: resolved (fixed in 45.0-1)
debian
CVE-2025-3032P3HIGHCVSS 7.4fixed in firefox 137.0-1 (sid)2025
CVE-2025-3032 [HIGH] CVE-2025-3032: firefox - Leaking of file descriptors from the fork server to web content processes could ... Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability affects Firefox < 137 and Thunderbird < 137. Scope: local sid: resolved (fixed in 137.0-1)
debian
CVE-2018-17466P3HIGHCVSS 8.8fixed in firefox 64.0-1 (sid)2018
CVE-2018-17466 [HIGH] CVE-2018-17466: firefox - Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allow... Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Scope: local sid: resolved (fixed in 64.0-1)
debian
CVE-2019-11730P3MEDIUMCVSS 6.5fixed in firefox 68.0-1 (sid)2019
CVE-2019-11730 [MEDIUM] CVE-2019-11730: firefox - A vulnerability exists where if a user opens a locally saved HTML file, this fil... A vulnerability exists where if a user opens a locally saved HTML file, this file can use file: URIs to access other files in the same directory or sub-directories if the names are known or guessed. The Fetch API can then be used to read the contents of any files stored in these directories and they may uploaded to a server. It was demonstrated that in combination
debian
CVE-2019-17017P3HIGHCVSS 8.8fixed in firefox 72.0-1 (sid)2019
CVE-2019-17017 [HIGH] CVE-2019-17017: firefox - Due to a missing case handling object types, a type confusion vulnerability coul... Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72. Scope: local sid: resolved (fixed in 72.0-1)
debian
CVE-2020-15659P3HIGHCVSS 8.8fixed in firefox 79.0-1 (sid)2020
CVE-2020-15659 [HIGH] CVE-2020-15659: firefox - Mozilla developers and community members reported memory safety bugs present in ... Mozilla developers and community members reported memory safety bugs present in Firefox 78 and Firefox ESR 78.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 6
debian
CVE-2017-7798P3HIGHCVSS 8.8fixed in firefox 55.0-1 (sid)2017
CVE-2017-7798 [HIGH] CVE-2017-7798: firefox - The Developer Tools feature suffers from a XUL injection vulnerability due to im... The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool. This vulnerability affects Firefox ESR < 52.3 and Firefox < 55. Scope: local sid: resolved (fixed in 55.0-1)
debian
CVE-2021-43537P3HIGHCVSS 8.8fixed in firefox 95.0-1 (sid)2021
CVE-2021-43537 [HIGH] CVE-2021-43537: firefox - An incorrect type conversion of sizes from 64bit to 32bit integers allowed an at... An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95. Scope: local sid: resolved (fixed in 95.0-1)
debian
CVE-2020-26971P3HIGHCVSS 8.8fixed in firefox 84.0-1 (sid)2020
CVE-2020-26971 [HIGH] CVE-2020-26971: firefox - Certain blit values provided by the user were not properly constrained leading t... Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow on some video drivers. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6. Scope: local sid: resolved (fixed in 84.0-1)
debian
CVE-2016-5273P3HIGHCVSS 8.8fixed in firefox 49.0-1 (sid)2016
CVE-2016-5273 [HIGH] CVE-2016-5273: firefox - The mozilla::a11y::HyperTextAccessible::GetChildOffset function in the accessibi... The mozilla::a11y::HyperTextAccessible::GetChildOffset function in the accessibility implementation in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code via a crafted web site. Scope: local sid: resolved (fixed in 49.0-1)
debian
CVE-2023-6858P3HIGHCVSS 8.8fixed in firefox 121.0-1 (sid)2023
CVE-2023-6858 [HIGH] CVE-2023-6858: firefox - Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to ins... Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. Scope: local sid: resolved (fixed in 121.0-1)
debian
CVE-2024-11705P3CRITICALCVSS 9.1fixed in firefox 134.0-1 (sid)2024
CVE-2024-11705 [CRITICAL] CVE-2024-11705: firefox - `NSC_DeriveKey` inadvertently assumed that the `phKey` parameter is always non-N... `NSC_DeriveKey` inadvertently assumed that the `phKey` parameter is always non-NULL. When it was passed as NULL, a segmentation fault (SEGV) occurred, leading to crashes. This behavior conflicted with the PKCS#11 v3.0 specification, which allows `phKey` to be NULL for certain mechanisms. This vulnerability affects Firefox < 133 and Thunderbird < 133. Scope: loca
debian
CVE-2022-40962P3HIGHCVSS 8.8fixed in firefox 105.0-1 (sid)2022
CVE-2022-40962 [HIGH] CVE-2022-40962: firefox - Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrs... Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affe
debian
CVE-2020-16044P3HIGHCVSS 8.8fixed in firefox 84.0.2-1 (sid)2020
CVE-2020-16044 [HIGH] CVE-2020-16044: firefox - Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote... Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet. Scope: local sid: resolved (fixed in 84.0.2-1)
debian
CVE-2021-23995P3HIGHCVSS 8.8fixed in firefox 88.0-1 (sid)2021
CVE-2021-23995 [HIGH] CVE-2021-23995: firefox - When Responsive Design Mode was enabled, it used references to objects that were... When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88. Scope: local sid: resolved (fixed in 88.0-1)
debian
CVE-2023-6864P3HIGHCVSS 8.8fixed in firefox 121.0-1 (sid)2023
CVE-2023-6864 [HIGH] CVE-2023-6864: firefox - Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 11... Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. Scope: local sid: resolved (fixed in 12
debian
CVE-2017-5459P3CRITICALCVSS 9.8fixed in firefox 52.0.1-1 (sid)2017
CVE-2017-5459 [CRITICAL] CVE-2017-5459: firefox - A buffer overflow in WebGL triggerable by web content, resulting in a potentiall... A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53. Scope: local sid: resolved (fixed in 52.0.1-1)
debian
CVE-2025-8037P3CRITICALCVSS 9.1fixed in firefox 141.0-1 (sid)2025
CVE-2025-8037 [CRITICAL] CVE-2025-8037: firefox - Setting a nameless cookie with an equals sign in the value shadowed other cookie... Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1. Scope: local sid: resolved (fixed in 141.0-1)
debian
CVE-2022-22740P3HIGHCVSS 8.8fixed in firefox 96.0-1 (sid)2022
CVE-2022-22740 [HIGH] CVE-2022-22740: firefox - Certain network request objects were freed too early when releasing a network re... Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5. Scope: local sid: resolved (fixed in 96.0-1)
debian
Debian Firefox vulnerabilities | cvebase