Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 49 of 78
CVE-2025-3608P3MEDIUMCVSS 6.5fixed in firefox 137.0.2-1 (sid)2025
CVE-2025-3608 [MEDIUM] CVE-2025-3608: firefox - A race condition existed in nsHttpTransaction that could have been exploited to ...
A race condition existed in nsHttpTransaction that could have been exploited to cause memory corruption, potentially leading to an exploitable condition. This vulnerability affects Firefox < 137.0.2.
Scope: local
sid: resolved (fixed in 137.0.2-1)
debian
CVE-2025-14331P4MEDIUMCVSS 6.5fixed in firefox 146.0-1 (sid)2025
CVE-2025-14331 [MEDIUM] CVE-2025-14331: firefox - Same-origin policy bypass in the Request Handling component. This vulnerability ...
Same-origin policy bypass in the Request Handling component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.
Scope: local
sid: resolved (fixed in 146.0-1)
debian
CVE-2006-1733P3HIGHCVSS 6.8fixed in firefox 1.5.dfsg+1.5.0.2-2 (sid)2006
CVE-2006-1733 [MEDIUM] CVE-2006-1733: firefox - Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla S...
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly protect the compilation scope of privileged built-in XBL bindings, which allows remote attackers to execute arbitrary code via the (1) valueOf.call or (2) valueOf.apply methods of an XBL binding, or (3) "by inserting an XBL m
debian
CVE-2017-5449P4HIGHCVSS 7.5fixed in firefox 52.0.1-1 (sid)2017
CVE-2017-5449 [HIGH] CVE-2017-5449: firefox - A possibly exploitable crash triggered during layout and manipulation of bidirec...
A possibly exploitable crash triggered during layout and manipulation of bidirectional unicode text in concert with CSS animations. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and Firefox < 53.
Scope: local
sid: resolved (fixed in 52.0.1-1)
debian
CVE-2017-5467P4HIGHCVSS 7.5fixed in firefox 52.0.1-1 (sid)2017
CVE-2017-5467 [HIGH] CVE-2017-5467: firefox - A potential memory corruption and crash when using Skia content when drawing con...
A potential memory corruption and crash when using Skia content when drawing content outside of the bounds of a clipping region. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and Firefox < 53.
Scope: local
sid: resolved (fixed in 52.0.1-1)
debian
CVE-2017-16541P3LOWCVSS 6.5fixed in firefox 62.0-1 (sid)2017
CVE-2017-16541 [MEDIUM] CVE-2017-16541: firefox - Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass th...
Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass the intended anonymity feature and discover a client IP address via vectors involving a crafted web site that leverages file:// mishandling in Firefox, aka TorMoil. NOTE: Tails is unaffected.
Scope: local
sid: resolved (fixed in 62.0-1)
debian
CVE-2022-45415P4HIGHCVSS 7.8fixed in firefox 107.0-1 (sid)2022
CVE-2022-45415 [HIGH] CVE-2022-45415: firefox - When downloading an HTML file, if the title of the page was formatted as a filen...
When downloading an HTML file, if the title of the page was formatted as a filename with a malicious extension, Firefox may have saved the file with that extension, leading to possible system compromise if the downloaded file was later ran. This vulnerability affects Firefox < 107.
Scope: local
sid: resolved (fixed in 107.0-1)
debian
CVE-2006-1724P4MEDIUMCVSS 7.5fixed in firefox 1.5.dfsg+1.5.0.2-1 (sid)2006
CVE-2006-1724 [HIGH] CVE-2006-1724: firefox - Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x befor...
Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to DHTML.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.2-1)
debian
CVE-2016-2825P4MEDIUMCVSS 6.5fixed in firefox 47.0-1 (sid)2016
CVE-2016-2825 [MEDIUM] CVE-2016-2825: firefox - Mozilla Firefox before 47.0 allows remote attackers to bypass the Same Origin Po...
Mozilla Firefox before 47.0 allows remote attackers to bypass the Same Origin Policy and modify the location.host property via an invalid data: URL.
Scope: local
sid: resolved (fixed in 47.0-1)
debian
CVE-2021-23985P4MEDIUMCVSS 6.5fixed in firefox 87.0-1 (sid)2021
CVE-2021-23985 [MEDIUM] CVE-2021-23985: firefox - If an attacker is able to alter specific about:config values (for example malwar...
If an attacker is able to alter specific about:config values (for example malware running on the user's computer), the Devtools remote debugging feature could have been enabled in a way that was unnoticable to the user. This would have allowed a remote attacker (able to make a direct network connection to the victim) to monitor the user's browsing activity and (pl
debian
CVE-2017-7777P4HIGHCVSS 8.8fixed in firefox 54.0-1 (sid)2017
CVE-2017-7777 [HIGH] CVE-2017-7777: firefox - Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphit...
Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::read_glyph function.
Scope: local
sid: resolved (fixed in 54.0-1)
debian
CVE-2018-18506P4MEDIUMCVSS 5.9fixed in firefox 65.0-1 (sid)2018
CVE-2018-18506 [MEDIUM] CVE-2018-18506: firefox - When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Config...
When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. This behavior is disallowed by default when a proxy is manually configured, but when enabled could allow for attacks on se
debian
CVE-2025-1414P4MEDIUMCVSS 6.5fixed in firefox 135.0.1-1 (sid)2025
CVE-2025-1414 [MEDIUM] CVE-2025-1414: firefox - Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of...
Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 135.0.1.
Scope: local
sid: resolved (fixed in 135.0.1-1)
debian
CVE-2024-7531P4MEDIUMCVSS 6.5fixed in firefox 129.0-1 (sid)2024
CVE-2024-7531 [MEDIUM] CVE-2024-7531: firefox - Calling `PK11_Encrypt()` in NSS using CKM_CHACHA20 and the same buffer for input...
Calling `PK11_Encrypt()` in NSS using CKM_CHACHA20 and the same buffer for input and output can result in plaintext on an Intel Sandy Bridge processor. In Firefox this only affects the QUIC header protection feature when the connection is using the ChaCha20-Poly1305 cipher suite. The most likely outcome is connection failure, but if the connection persists despite t
debian
CVE-2024-4774P4MEDIUMCVSS 6.5fixed in firefox 126.0-1 (sid)2024
CVE-2024-4774 [MEDIUM] CVE-2024-4774: firefox - The `ShmemCharMapHashEntry()` code was susceptible to potentially undefined beha...
The `ShmemCharMapHashEntry()` code was susceptible to potentially undefined behavior by bypassing the move semantics for one of its data members. This vulnerability affects Firefox < 126.
Scope: local
sid: resolved (fixed in 126.0-1)
debian
CVE-2023-23597P4MEDIUMCVSS 6.5fixed in firefox 109.0-1 (sid)2023
CVE-2023-23597 [MEDIUM] CVE-2023-23597: firefox - A compromised web child process could disable web security opening restrictions,...
A compromised web child process could disable web security opening restrictions, leading to a new child process being spawned within the `file://` context. Given a reliable exploit primitive, this new process could be exploited again leading to arbitrary file read. This vulnerability affects Firefox < 109.
Scope: local
sid: resolved (fixed in 109.0-1)
debian
CVE-2025-10532P4MEDIUMCVSS 6.5fixed in firefox 143.0-1 (sid)2025
CVE-2025-10532 [MEDIUM] CVE-2025-10532: firefox - Incorrect boundary conditions in the JavaScript: GC component. This vulnerabilit...
Incorrect boundary conditions in the JavaScript: GC component. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
Scope: local
sid: resolved (fixed in 143.0-1)
debian
CVE-2025-3031P4MEDIUMCVSS 6.5fixed in firefox 137.0-1 (sid)2025
CVE-2025-3031 [MEDIUM] CVE-2025-3031: firefox - An attacker could read 32 bits of values spilled onto the stack in a JIT compile...
An attacker could read 32 bits of values spilled onto the stack in a JIT compiled function. This vulnerability affects Firefox < 137 and Thunderbird < 137.
Scope: local
sid: resolved (fixed in 137.0-1)
debian
CVE-2025-10529P4MEDIUMCVSS 6.5fixed in firefox 143.0-1 (sid)2025
CVE-2025-10529 [MEDIUM] CVE-2025-10529: firefox - Same-origin policy bypass in the Layout component. This vulnerability affects Fi...
Same-origin policy bypass in the Layout component. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
Scope: local
sid: resolved (fixed in 143.0-1)
debian
CVE-2025-4092P4MEDIUMCVSS 6.5fixed in firefox 138.0-1 (sid)2025
CVE-2025-4092 [MEDIUM] CVE-2025-4092: firefox - Memory safety bugs present in Firefox 137 and Thunderbird 137. Some of these bug...
Memory safety bugs present in Firefox 137 and Thunderbird 137. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 138 and Thunderbird < 138.
Scope: local
sid: resolved (fixed in 138.0-1)
debian