Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 53 of 78
CVE-2019-17014P4HIGHCVSS 7.4fixed in firefox 71.0-1 (sid)2019
CVE-2019-17014 [HIGH] CVE-2019-17014: firefox - If an image had not loaded correctly (such as when it is not actually an image),...
If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak. This vulnerability affects Firefox < 71.
Scope: local
sid: resolved (fixed in 71.0-1)
debian
CVE-2019-20503P4MEDIUMCVSS 6.5fixed in chromium 80.0.3987.149-1 (bookworm)2019
CVE-2019-20503 [MEDIUM] CVE-2019-20503: chromium - usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_in...
usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init.
Scope: local
bookworm: resolved (fixed in 80.0.3987.149-1)
bullseye: resolved (fixed in 80.0.3987.149-1)
forky: resolved (fixed in 80.0.3987.149-1)
sid: resolved (fixed in 80.0.3987.149-1)
trixie: resolved (fixed in 80.0.3987.149-1)
debian
CVE-2020-12418P4MEDIUMCVSS 6.5fixed in firefox 78.0-1 (sid)2020
CVE-2020-12418 [MEDIUM] CVE-2020-12418: firefox - Manipulating individual parts of a URL object could have caused an out-of-bounds...
Manipulating individual parts of a URL object could have caused an out-of-bounds read, leaking process memory to malicious JavaScript. This vulnerability affects Firefox ESR < 68.10, Firefox < 78, and Thunderbird < 68.10.0.
Scope: local
sid: resolved (fixed in 78.0-1)
debian
CVE-2017-5407P4MEDIUMCVSS 6.5fixed in firefox 52.0-1 (sid)2017
CVE-2017-5407 [MEDIUM] CVE-2017-5407: firefox - Using SVG filters that don't use the fixed point math implementation on a target...
Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8,
debian
CVE-2006-1529P4MEDIUMCVSS 7.5fixed in firefox 1.5.0.2-1 (sid)2006
CVE-2006-1529 [HIGH] CVE-2006-1529: firefox - Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonk...
Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due to the lack of sufficient public details from the vendor as of 20060413, it is unclear how CVE-2006-1529, CVE-2006-1530,
debian
CVE-2022-28282P4MEDIUMCVSS 6.5fixed in firefox 99.0-1 (sid)2022
CVE-2022-28282 [MEDIUM] CVE-2022-28282: firefox - By using a link with <code>rel="localization"</code> a use-after-free could have...
By using a link with rel="localization" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.
Scope: local
sid: resolved (fixed in 99.0-1)
debian
CVE-2016-9067P4MEDIUMCVSS 6.5fixed in firefox 50.0-1 (sid)2016
CVE-2016-9067 [MEDIUM] CVE-2016-9067: firefox - Two use-after-free errors during DOM operations resulting in potentially exploit...
Two use-after-free errors during DOM operations resulting in potentially exploitable crashes. This vulnerability affects Firefox < 50.
Scope: local
sid: resolved (fixed in 50.0-1)
debian
CVE-2018-12397P4HIGHCVSS 7.1fixed in firefox 63.0-1 (sid)2018
CVE-2018-12397 [HIGH] CVE-2018-12397: firefox - A WebExtension can request access to local files without the warning prompt stat...
A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This vulnerability affects Firefox ESR < 60.3 and Firefox < 63.
Scope: local
debian
CVE-2020-12421P4MEDIUMCVSS 6.5fixed in firefox 78.0-1 (sid)2020
CVE-2020-12421 [MEDIUM] CVE-2020-12421: firefox - When performing add-on updates, certificate chains terminating in non-built-in-r...
When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected (even if they were legitimately added by an administrator.) This could have caused add-ons to become out-of-date silently without notification to the user. This vulnerability affects Firefox ESR < 68.10, Firefox < 78, and Thunderbird < 68.10.0.
Scope: local
sid: reso
debian
CVE-2021-43542P4MEDIUMCVSS 6.5fixed in firefox 95.0-1 (sid)2021
CVE-2021-43542 [MEDIUM] CVE-2021-43542: firefox - Using XMLHttpRequest, an attacker could have identified installed applications b...
Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.
Scope: local
sid: resolved (fixed in 95.0-1)
debian
CVE-2018-18495P4MEDIUMCVSS 6.5fixed in firefox 64.0-1 (sid)2018
CVE-2018-18495 [MEDIUM] CVE-2018-18495: firefox - WebExtension content scripts can be loaded into about: pages in some circumstanc...
WebExtension content scripts can be loaded into about: pages in some circumstances, in violation of the permissions granted to extensions. This could allow an extension to interfere with the loading and usage of these pages and use capabilities that were intended to be restricted from extensions. This vulnerability affects Firefox < 64.
Scope: local
sid: resolved
debian
CVE-2021-43541P4MEDIUMCVSS 6.5fixed in firefox 95.0-1 (sid)2021
CVE-2021-43541 [MEDIUM] CVE-2021-43541: firefox - When invoking protocol handlers for external protocols, a supplied parameter URL...
When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.
Scope: local
sid: resolved (fixed in 95.0-1)
debian
CVE-2020-26976P4MEDIUMCVSS 6.5fixed in firefox 84.0-1 (sid)2020
CVE-2020-26976 [MEDIUM] CVE-2020-26976: firefox - When a HTTPS pages was embedded in a HTTP page, and there was a service worker r...
When a HTTPS pages was embedded in a HTTP page, and there was a service worker registered for the former, the service worker could have intercepted the request for the secure page despite the iframe not being a secure context due to the (insecure) framing. This vulnerability affects Firefox < 84.
Scope: local
sid: resolved (fixed in 84.0-1)
debian
CVE-2020-15655P4MEDIUMCVSS 6.5fixed in firefox 79.0-1 (sid)2020
CVE-2020-15655 [MEDIUM] CVE-2020-15655: firefox - A redirected HTTP request which is observed or modified through a web extension ...
A redirected HTTP request which is observed or modified through a web extension could bypass existing CORS checks, leading to potential disclosure of cross-origin information. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
Scope: local
sid: resolved (fixed in 79.0-1)
debian
CVE-2020-15664P4MEDIUMCVSS 6.5fixed in firefox 80.0-1 (sid)2020
CVE-2020-15664 [MEDIUM] CVE-2020-15664: firefox - By holding a reference to the eval() function from an about:blank window, a mali...
By holding a reference to the eval() function from an about:blank window, a malicious webpage could have gained access to the InstallTrigger object which would allow them to prompt the user to install an extension. Combined with user confusion, this could result in an unintended or malicious extension being installed. This vulnerability affects Firefox < 80, Thund
debian
CVE-2022-40959P4MEDIUMCVSS 6.5fixed in firefox 105.0-1 (sid)2022
CVE-2022-40959 [MEDIUM] CVE-2022-40959: firefox - During iframe navigation, certain pages did not have their FeaturePolicy fully i...
During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device permissions into untrusted subdocuments. This vulnerability affects Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox < 105.
Scope: local
sid: resolved (fixed in 105.0-1)
debian
CVE-2020-12415P4MEDIUMCVSS 6.5fixed in firefox 78.0-1 (sid)2020
CVE-2020-12415 [MEDIUM] CVE-2020-12415: firefox - When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have b...
When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have become confused and allowed a manifest to be served from a subdirectory. This could cause the appcache to be used to service requests for the top level directory. This vulnerability affects Firefox < 78.
Scope: local
sid: resolved (fixed in 78.0-1)
debian
CVE-2020-15653P4MEDIUMCVSS 6.5fixed in firefox 79.0-1 (sid)2020
CVE-2020-15653 [MEDIUM] CVE-2020-15653: firefox - An iframe sandbox element with the allow-popups flag could be bypassed when usin...
An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations that allowed popups and hosted arbitrary content. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
Scope: local
sid: resolved (fixed in 79.0-1)
debian
CVE-2021-23975P4MEDIUMCVSS 6.5fixed in firefox 86.0-1 (sid)2021
CVE-2021-23975 [MEDIUM] CVE-2021-23975: firefox - The developer page about:memory has a Measure function for exploring what object...
The developer page about:memory has a Measure function for exploring what object types the browser has allocated and their sizes. When this function was invoked we incorrectly called the sizeof function, instead of using the API method that checks for invalid pointers. This vulnerability affects Firefox < 86.
Scope: local
sid: resolved (fixed in 86.0-1)
debian
CVE-2021-23956P4MEDIUMCVSS 6.5fixed in firefox 85.0-1 (sid)2021
CVE-2021-23956 [MEDIUM] CVE-2021-23956: firefox - An ambiguous file picker design could have confused users who intended to select...
An ambiguous file picker design could have confused users who intended to select and upload a single file into uploading a whole directory. This was addressed by adding a new prompt. This vulnerability affects Firefox < 85.
Scope: local
sid: resolved (fixed in 85.0-1)
debian