cbcvebase.

Debian Firefox vulnerabilities

1,550 known vulnerabilities affecting debian/firefox.

Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42

Vulnerabilities

Page 20 of 78
CVE-2023-29550P3HIGHCVSS 8.8fixed in firefox 112.0-1 (sid)2023
CVE-2023-29550 [HIGH] CVE-2023-29550: firefox - Memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these b... Memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10. Sco
debian
CVE-2023-29536P3HIGHCVSS 8.8fixed in firefox 112.0-1 (sid)2023
CVE-2023-29536 [HIGH] CVE-2023-29536: firefox - An attacker could cause the memory manager to incorrectly free a pointer that ad... An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10. Scope: local sid: resolved (
debian
CVE-2023-28162P3HIGHCVSS 8.8fixed in firefox 111.0-1 (sid)2023
CVE-2023-28162 [HIGH] CVE-2023-28162: firefox - While implementing AudioWorklets, some code may have casted one type to another,... While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic type. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9. Scope: local sid: resolved (fixed in 111.0-1)
debian
CVE-2023-25737P3HIGHCVSS 8.8fixed in firefox 110.0-1 (sid)2023
CVE-2023-25737 [HIGH] CVE-2023-25737: firefox - An invalid downcast from <code>nsTextNode</code> to <code>SVGElement</code> coul... An invalid downcast from nsTextNode to SVGElement could have lead to undefined behavior. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8. Scope: local sid: resolved (fixed in 110.0-1)
debian
CVE-2023-25739P3HIGHCVSS 8.8fixed in firefox 110.0-1 (sid)2023
CVE-2023-25739 [HIGH] CVE-2023-25739: firefox - Module load requests that failed were not being checked as to whether or not the... Module load requests that failed were not being checked as to whether or not they were cancelled causing a use-after-free in ScriptLoadContext. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8. Scope: local sid: resolved (fixed in 110.0-1)
debian
CVE-2023-25744P3HIGHCVSS 8.8fixed in firefox 110.0-1 (sid)2023
CVE-2023-25744 [HIGH] CVE-2023-25744: firefox - Mmemory safety bugs present in Firefox 109 and Firefox ESR 102.7. Some of these ... Mmemory safety bugs present in Firefox 109 and Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 110 and Firefox ESR < 102.8. Scope: local sid: resolved (fixed in 110.0-1)
debian
CVE-2024-0745P3HIGHCVSS 8.8fixed in firefox 122.0-1 (sid)2024
CVE-2024-0745 [HIGH] CVE-2024-0745: firefox - The WebAudio `OscillatorNode` object was susceptible to a stack buffer overflow.... The WebAudio `OscillatorNode` object was susceptible to a stack buffer overflow. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 122. Scope: local sid: resolved (fixed in 122.0-1)
debian
CVE-2024-3856P3HIGHCVSS 8.8fixed in firefox 125.0.1-1 (sid)2024
CVE-2024-3856 [HIGH] CVE-2024-3856: firefox - A use-after-free could occur during WASM execution if garbage collection ran dur... A use-after-free could occur during WASM execution if garbage collection ran during the creation of an array. This vulnerability affects Firefox < 125. Scope: local sid: resolved (fixed in 125.0.1-1)
debian
CVE-2022-22755P3HIGHCVSS 8.8fixed in firefox 97.0-1 (sid)2022
CVE-2022-22755 [HIGH] CVE-2022-22755: firefox - By using XSL Transforms, a malicious webserver could have served a user an XSL d... By using XSL Transforms, a malicious webserver could have served a user an XSL document that would continue to execute JavaScript (within the bounds of the same-origin policy) even after the tab was closed. This vulnerability affects Firefox < 97. Scope: local sid: resolved (fixed in 97.0-1)
debian
CVE-2024-9396P3HIGHCVSS 8.8fixed in firefox 131.0-1 (sid)2024
CVE-2024-9396 [HIGH] CVE-2024-9396: firefox - It is currently unknown if this issue is exploitable but a condition may arise w... It is currently unknown if this issue is exploitable but a condition may arise where the structured clone of certain objects could lead to memory corruption. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131. Scope: local sid: resolved (fixed in 131.0-1)
debian
CVE-2018-5188P3CRITICALCVSS 9.8fixed in firefox 61.0-1 (sid)2018
CVE-2018-5188 [CRITICAL] CVE-2018-5188: firefox - Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. ... Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61. Scope:
debian
CVE-2024-7530P3HIGHCVSS 8.8fixed in firefox 129.0-1 (sid)2024
CVE-2024-7530 [HIGH] CVE-2024-7530: firefox - Incorrect garbage collection interaction could have led to a use-after-free. Thi... Incorrect garbage collection interaction could have led to a use-after-free. This vulnerability affects Firefox < 129. Scope: local sid: resolved (fixed in 129.0-1)
debian
CVE-2026-5732P3HIGHCVSS 8.8fixed in firefox 149.0.2-1 (sid)2026
CVE-2026-5732 [HIGH] CVE-2026-5732: firefox - Incorrect boundary conditions, integer overflow in the Graphics: Text component.... Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability affects Firefox < 149.0.2, Firefox ESR < 140.9.1, Thunderbird < 149.0.2, and Thunderbird < 140.9.1. Scope: local sid: resolved (fixed in 149.0.2-1)
debian
CVE-2026-2798P3HIGHCVSS 8.8fixed in firefox 148.0-1 (sid)2026
CVE-2026-2798 [HIGH] CVE-2026-2798: firefox - Use-after-free in the DOM: Core & HTML component. This vulnerability affects Fir... Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148 and Thunderbird < 148. Scope: local sid: resolved (fixed in 148.0-1)
debian
CVE-2017-5438P3CRITICALCVSS 9.8fixed in firefox 52.0.1-1 (sid)2017
CVE-2017-5438 [CRITICAL] CVE-2017-5438: firefox - A use-after-free vulnerability during XSLT processing due to the result handler ... A use-after-free vulnerability during XSLT processing due to the result handler being held by a freed handler during handling. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53. Scope: local sid: resolved (fixed in 52.0.1-1)
debian
CVE-2017-7818P3CRITICALCVSS 9.8fixed in firefox 56.0-1 (sid)2017
CVE-2017-7818 [CRITICAL] CVE-2017-7818: firefox - A use-after-free vulnerability can occur when manipulating arrays of Accessible ... A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications (ARIA) elements within containers through the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4. Scope: local sid: resolved (fixed in 56.0-1)
debian
CVE-2018-5091P3CRITICALCVSS 9.8fixed in firefox 58.0-1 (sid)2018
CVE-2018-5091 [CRITICAL] CVE-2018-5091: firefox - A use-after-free vulnerability can occur during WebRTC connections when interact... A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 52.6 and Firefox < 58. Scope: local sid: resolved (fixed in 58.0-1)
debian
CVE-2017-5443P3CRITICALCVSS 9.8fixed in firefox 52.0.1-1 (sid)2017
CVE-2017-5443 [CRITICAL] CVE-2017-5443: firefox - An out-of-bounds write vulnerability while decoding improperly formed BinHex for... An out-of-bounds write vulnerability while decoding improperly formed BinHex format archives. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53. Scope: local sid: resolved (fixed in 52.0.1-1)
debian
CVE-2016-2799P3HIGHCVSS 8.8fixed in firefox 45.0-1 (sid)2016
CVE-2016-2799 [HIGH] CVE-2016-2799: firefox - Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite ... Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font. Scope: local sid: resolved (fixed in 45.0-1)
debian
CVE-2017-7788P3CRITICALCVSS 9.8fixed in firefox 55.0-1 (sid)2017
CVE-2017-7788 [CRITICAL] CVE-2017-7788: firefox - When an "iframe" has a "sandbox" attribute and its content is specified using "s... When an "iframe" has a "sandbox" attribute and its content is specified using "srcdoc", that content does not inherit the containing page's Content Security Policy (CSP) as it should unless the sandbox attribute included "allow-same-origin". This vulnerability affects Firefox < 55. Scope: local sid: resolved (fixed in 55.0-1)
debian
Debian Firefox vulnerabilities | cvebase