Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 65 of 78
CVE-2021-43530P4MEDIUMCVSS 6.1fixed in firefox 94.0-1 (sid)2021
CVE-2021-43530 [MEDIUM] CVE-2021-43530: firefox - A Universal XSS vulnerability was present in Firefox for Android resulting from ...
A Universal XSS vulnerability was present in Firefox for Android resulting from improper sanitization when processing a URL scanned from a QR code. *This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 94.
Scope: local
sid: resolved (fixed in 94.0-1)
debian
CVE-2016-9903P4MEDIUMCVSS 6.1fixed in firefox 50.1.0-1 (sid)2016
CVE-2016-9903 [MEDIUM] CVE-2016-9903: firefox - Mozilla's add-ons SDK had a world-accessible resource with an HTML injection vul...
Mozilla's add-ons SDK had a world-accessible resource with an HTML injection vulnerability. If an additional vulnerability allowed this resource to be loaded as a document it could allow injecting content and script into an add-on's context. This vulnerability affects Firefox < 50.1.
Scope: local
sid: resolved (fixed in 50.1.0-1)
debian
CVE-2017-5389P4MEDIUMCVSS 6.1fixed in firefox 51.0-1 (sid)2017
CVE-2017-5389 [MEDIUM] CVE-2017-5389: firefox - WebExtensions could use the "mozAddonManager" API by modifying the CSP headers o...
WebExtensions could use the "mozAddonManager" API by modifying the CSP headers on sites with the appropriate permissions and then using host requests to redirect script loads to a malicious site. This allows a malicious extension to then install additional extensions without explicit user permission. This vulnerability affects Firefox < 51.
Scope: local
sid: resolve
debian
CVE-2022-40956P4MEDIUMCVSS 6.1fixed in firefox 105.0-1 (sid)2022
CVE-2022-40956 [MEDIUM] CVE-2022-40956: firefox - When injecting an HTML base element, some requests would ignore the CSP's base-u...
When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This vulnerability affects Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox < 105.
Scope: local
sid: resolved (fixed in 105.0-1)
debian
CVE-2021-23974P4MEDIUMCVSS 6.1fixed in firefox 86.0-1 (sid)2021
CVE-2021-23974 [MEDIUM] CVE-2021-23974: firefox - The DOMParser API did not properly process '<noscript>' elements for escaping. T...
The DOMParser API did not properly process '' elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer. This vulnerability affects Firefox < 86.
Scope: local
sid: resolved (fixed in 86.0-1)
debian
CVE-2022-45418P4MEDIUMCVSS 6.1fixed in firefox 107.0-1 (sid)2022
CVE-2022-45418 [MEDIUM] CVE-2022-45418: firefox - If a custom mouse cursor is specified in CSS, under certain circumstances the cu...
If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.
Scope: local
sid: resolved (fixed in 107.0-1)
debian
CVE-2020-26979P4MEDIUMCVSS 6.1fixed in firefox 84.0-1 (sid)2020
CVE-2020-26979 [MEDIUM] CVE-2020-26979: firefox - When a user typed a URL in the address bar or the search bar and quickly hit the...
When a user typed a URL in the address bar or the search bar and quickly hit the enter key, a website could sometimes capture that event and then redirect the user before navigation occurred to the desired, entered address. To construct a convincing spoof the attacker would have had to guess what the user was typing, perhaps by suggesting it. This vulnerability af
debian
CVE-2022-29912P4MEDIUMCVSS 6.1fixed in firefox 100.0-1 (sid)2022
CVE-2022-29912 [MEDIUM] CVE-2022-29912: firefox - Requests initiated through reader mode did not properly omit cookies with a Same...
Requests initiated through reader mode did not properly omit cookies with a SameSite attribute. This vulnerability affects Thunderbird < 91.9, Firefox ESR < 91.9, and Firefox < 100.
Scope: local
sid: resolved (fixed in 100.0-1)
debian
CVE-2017-5408P4MEDIUMCVSS 5.3fixed in firefox 52.0-1 (sid)2017
CVE-2017-5408 [MEDIUM] CVE-2017-5408: firefox - Video files loaded video captions cross-origin without checking for the presence...
Video files loaded video captions cross-origin without checking for the presence of CORS headers permitting such cross-origin use, leading to potential information disclosure for video captions. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
Scope: local
sid: resolved (fixed in 52.0-1)
debian
CVE-2017-5405P4MEDIUMCVSS 5.3fixed in firefox 52.0-1 (sid)2017
CVE-2017-5405 [MEDIUM] CVE-2017-5405: firefox - Certain response codes in FTP connections can result in the use of uninitialized...
Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
Scope: local
sid: resolved (fixed in 52.0-1)
debian
CVE-2019-11762P4MEDIUMCVSS 6.1fixed in firefox 70.0-1 (sid)2019
CVE-2019-11762 [MEDIUM] CVE-2019-11762: firefox - If two same-origin documents set document.domain differently to become cross-ori...
If two same-origin documents set document.domain differently to become cross-origin, it was possible for them to call arbitrary DOM methods/getters/setters on the now-cross-origin window. This vulnerability affects Firefox < 70, Thunderbird < 68.2, and Firefox ESR < 68.2.
Scope: local
sid: resolved (fixed in 70.0-1)
debian
CVE-2023-34415P4MEDIUMCVSS 6.1fixed in firefox 114.0-1 (sid)2023
CVE-2023-34415 [MEDIUM] CVE-2023-34415: firefox - When choosing a site-isolated process for a document loaded from a data: URL tha...
When choosing a site-isolated process for a document loaded from a data: URL that was the result of a redirect, Firefox would load that document in the same process as the site that issued the redirect. This bypassed the site-isolation protections against Spectre-like attacks on sites that host an "open redirect". Firefox no longer follows HTTP redirects to data:
debian
CVE-2022-34474P4MEDIUMCVSS 6.1fixed in firefox 102.0-1 (sid)2022
CVE-2022-34474 [MEDIUM] CVE-2022-34474: firefox - Even when an iframe was sandboxed with <code>allow-top-navigation-by-user-activa...
Even when an iframe was sandboxed with allow-top-navigation-by-user-activation, if it received a redirect header to an external protocol the browser would process the redirect and prompt the user as appropriate. This vulnerability affects Firefox < 102.
Scope: local
sid: resolved (fixed in 102.0-1)
debian
CVE-2025-10536P4MEDIUMCVSS 6.2fixed in firefox 143.0-1 (sid)2025
CVE-2025-10536 [MEDIUM] CVE-2025-10536: firefox - Information disclosure in the Networking: Cache component. This vulnerability af...
Information disclosure in the Networking: Cache component. This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3.
Scope: local
sid: resolved (fixed in 143.0-1)
debian
CVE-2022-34475P4MEDIUMCVSS 6.1fixed in firefox 102.0-1 (sid)2022
CVE-2022-34475 [MEDIUM] CVE-2022-34475: firefox - SVG <code><use></code> tags that referenced a same-origin document could h...
SVG tags that referenced a same-origin document could have resulted in script execution if attacker input was sanitized via the HTML Sanitizer API. This would have required the attacker to reference a same-origin JavaScript file containing the script to be executed. This vulnerability affects Firefox < 102.
Scope: local
sid: resolved (fixed in 102.0-1)
debian
CVE-2018-5117P4MEDIUMCVSS 5.3fixed in firefox 58.0-1 (sid)2018
CVE-2018-5117 [MEDIUM] CVE-2018-5117: firefox - If right-to-left text is used in the addressbar with left-to-right alignment, it...
If right-to-left text is used in the addressbar with left-to-right alignment, it is possible in some circumstances to scroll this text to spoof the displayed URL. This issue could result in the wrong URL being displayed as a location, which can mislead users to believe they are on a different site than the one loaded. This vulnerability affects Thunderbird < 52.6, F
debian
CVE-2018-5168P4MEDIUMCVSS 5.3fixed in firefox 60.0-1 (sid)2018
CVE-2018-5168 [MEDIUM] CVE-2018-5168: firefox - Sites can bypass security checks on permissions to install lightweight themes by...
Sites can bypass security checks on permissions to install lightweight themes by manipulating the "baseURI" property of the theme element. This could allow a malicious site to install a theme without user interaction which could contain offensive or embarrassing images. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox
debian
CVE-2024-8386P4MEDIUMCVSS 6.1fixed in firefox 130.0-1 (sid)2024
CVE-2024-8386 [MEDIUM] CVE-2024-8386: firefox - If a site had been granted the permission to open popup windows, it could cause ...
If a site had been granted the permission to open popup windows, it could cause Select elements to appear on top of another site to perform a spoofing attack. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Thunderbird < 128.2.
Scope: local
sid: resolved (fixed in 130.0-1)
debian
CVE-2022-36316P4MEDIUMCVSS 6.1fixed in firefox 103.0-1 (sid)2022
CVE-2022-36316 [MEDIUM] CVE-2022-36316: firefox - When using the Performance API, an attacker was able to notice subtle difference...
When using the Performance API, an attacker was able to notice subtle differences between PerformanceEntries and thus learn whether the target URL had been subject to a redirect. This vulnerability affects Firefox < 103.
Scope: local
sid: resolved (fixed in 103.0-1)
debian
CVE-2025-11712P4MEDIUMCVSS 6.1fixed in firefox 144.0-1 (sid)2025
CVE-2025-11712 [MEDIUM] CVE-2025-11712: firefox - A malicious page could have used the type attribute of an OBJECT tag to override...
A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and
debian