Debian Firefox vulnerabilities
1,550 known vulnerabilities affecting debian/firefox.
Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42
Vulnerabilities
Page 66 of 78
CVE-2025-6430P4MEDIUMCVSS 6.1fixed in firefox 140.0-1 (sid)2025
CVE-2025-6430 [MEDIUM] CVE-2025-6430: firefox - When a file download is specified via the `Content-Disposition` header, that dir...
When a file download is specified via the `Content-Disposition` header, that directive would be ignored if the file was included via a ` ` or ` ` tag, potentially making a website vulnerable to a cross-site scripting attack. This vulnerability affects Firefox < 140, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12.
Scope: local
sid: resolved (fixed
debian
CVE-2019-11717P4MEDIUMCVSS 5.3fixed in firefox 68.0-1 (sid)2019
CVE-2019-11717 [MEDIUM] CVE-2019-11717: firefox - A vulnerability exists where the caret ("^") character is improperly escaped con...
A vulnerability exists where the caret ("^") character is improperly escaped constructing some URIs due to it being used as a separator, allowing for possible spoofing of origin attributes. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8.
Scope: local
sid: resolved (fixed in 68.0-1)
debian
CVE-2006-6498P4HIGHCVSS 6.8fixed in firefox 45.0-1 (sid)2006
CVE-2006-6498 [MEDIUM] CVE-2006-6498: firefox - Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefo...
Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, SeaMonkey before 1.0.7, and Mozilla 1.7 and probably earlier on Solaris, allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown impact and at
debian
CVE-2006-6497P4MEDIUMCVSS 6.8fixed in firefox 45.0-1 (sid)2006
CVE-2006-6497 [MEDIUM] CVE-2006-6497: firefox - Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2....
Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown attack vectors.
Scope: local
sid: resolved (fixed in 45.0-1)
debian
CVE-2017-7764P4MEDIUMCVSS 5.3fixed in firefox 54.0-1 (sid)2017
CVE-2017-7764 [MEDIUM] CVE-2017-7764: firefox - Characters from the "Canadian Syllabics" unicode block can be mixed with charact...
Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be m
debian
CVE-2018-12403P4MEDIUMCVSS 5.3fixed in firefox 63.0-1 (sid)2018
CVE-2018-12403 [MEDIUM] CVE-2018-12403: firefox - If a site is loaded over a HTTPS connection but loads a favicon resource over HT...
If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users. This vulnerability affects Firefox < 63.
Scope: local
sid: resolved (fixed in 63.0-1)
debian
CVE-2019-13075P4LOWCVSS 5.3fixed in firefox 68.0-1 (sid)2019
CVE-2019-13075 [MEDIUM] CVE-2019-13075: firefox - Tor Browser through 8.5.3 has an information exposure vulnerability. It allows r...
Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a behavior of Firefox before 68.
Scope: local
sid: resolved (fixed in 68.
debian
CVE-2017-7789P4LOWCVSS 5.3fixed in firefox 55.0-1 (sid)2017
CVE-2017-7789 [MEDIUM] CVE-2017-7789: firefox - If a server sends two Strict-Transport-Security (STS) headers for a single conne...
If a server sends two Strict-Transport-Security (STS) headers for a single connection, they will be rejected as invalid and HTTP Strict Transport Security (HSTS) will not be enabled for the connection. This vulnerability affects Firefox < 55.
Scope: local
sid: resolved (fixed in 55.0-1)
debian
CVE-2018-5165P4MEDIUMCVSS 5.3fixed in firefox 60.0-1 (sid)2018
CVE-2018-5165 [MEDIUM] CVE-2018-5165: firefox - In 32-bit versions of Firefox, the Adobe Flash plugin setting for "Enable Adobe ...
In 32-bit versions of Firefox, the Adobe Flash plugin setting for "Enable Adobe Flash protected mode" is unchecked by default even though the Adobe Flash sandbox is actually enabled. The displayed state is the reverse of the true setting, resulting in user confusion. This could cause users to select this setting intending to activate it and inadvertently turn protec
debian
CVE-2018-5118P4MEDIUMCVSS 5.3fixed in firefox 58.0-1 (sid)2018
CVE-2018-5118 [MEDIUM] CVE-2018-5118: firefox - The screenshot images displayed in the Activity Stream page displayed when a new...
The screenshot images displayed in the Activity Stream page displayed when a new tab is opened is created from the meta tags of websites. An issue was discovered where the page could attempt to create these images through "file:" URLs from the local file system. This loading is blocked by the sandbox but could expose local data if combined with another attack that e
debian
CVE-2018-5119P4MEDIUMCVSS 5.3fixed in firefox 58.0-1 (sid)2018
CVE-2018-5119 [MEDIUM] CVE-2018-5119: firefox - The reader view will display cross-origin content when CORS headers are set to p...
The reader view will display cross-origin content when CORS headers are set to prohibit the loading of cross-origin content by a site. This could allow access to content that should be restricted in reader view. This vulnerability affects Firefox < 58.
Scope: local
sid: resolved (fixed in 58.0-1)
debian
CVE-2017-7832P4MEDIUMCVSS 5.3fixed in firefox 57.0-1 (sid)2017
CVE-2017-7832 [MEDIUM] CVE-2017-7832: firefox - The combined, single character, version of the letter 'i' with any of the potent...
The combined, single character, version of the letter 'i' with any of the potential accents in unicode, such as acute or grave, can be spoofed in the addressbar by the dotless version of 'i' followed by the same accent as a second character with most font sets. This allows for domain spoofing attacks because these combined domain names do not display as punycode. Th
debian
CVE-2017-5426P4MEDIUMCVSS 5.3fixed in firefox 52.0-1 (sid)2017
CVE-2017-5426 [MEDIUM] CVE-2017-5426: firefox - On Linux, if the secure computing mode BPF (seccomp-bpf) filter is running when ...
On Linux, if the secure computing mode BPF (seccomp-bpf) filter is running when the Gecko Media Plugin sandbox is started, the sandbox fails to be applied and items that would run within the sandbox are run protected only by the running filter which is typically weak compared to the sandbox. Note: this issue only affects Linux. Other operating systems are not affect
debian
CVE-2019-11718P4MEDIUMCVSS 5.3fixed in firefox 68.0-1 (sid)2019
CVE-2019-11718 [MEDIUM] CVE-2019-11718: firefox - Activity Stream can display content from sent from the Snippet Service website. ...
Activity Stream can display content from sent from the Snippet Service website. This content is written to innerHTML on the Activity Stream page without sanitization, allowing for a potential access to other information available to the Activity Stream, such as browsing history, if the Snipper Service were compromised. This vulnerability affects Firefox < 68.
Scop
debian
CVE-2018-5142P4MEDIUMCVSS 5.3fixed in firefox 59.0-1 (sid)2018
CVE-2018-5142 [MEDIUM] CVE-2018-5142: firefox - If Media Capture and Streams API permission is requested from documents with "da...
If Media Capture and Streams API permission is requested from documents with "data:" or "blob:" URLs, the permission notifications do not properly display the originating domain. The notification states "Unknown protocol" as the requestee, leading to user confusion about which site is asking for this permission. This vulnerability affects Firefox < 59.
Scope: local
debian
CVE-2020-15680P4MEDIUMCVSS 5.3fixed in firefox 82.0-1 (sid)2020
CVE-2020-15680 [MEDIUM] CVE-2020-15680: firefox - If a valid external protocol handler was referenced in an image tag, the resulti...
If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a non-existent protocol handler. This allowed an attacker to successfully probe whether an external protocol handler was registered. This vulnerability affects Firefox < 82.
Scope: local
sid: resolved (fixed in 82.
debian
CVE-2023-6206P4MEDIUMCVSS 5.4fixed in firefox 120.0-1 (sid)2023
CVE-2023-6206 [MEDIUM] CVE-2023-6206: firefox - The black fade animation when exiting fullscreen is roughly the length of the an...
The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click where the permission grant button would be about to appear. This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.
Scope: local
sid:
debian
CVE-2024-11695P4MEDIUMCVSS 5.4fixed in firefox 133.0-1 (sid)2024
CVE-2024-11695 [MEDIUM] CVE-2024-11695: firefox - A crafted URL containing Arabic script and whitespace characters could have hidd...
A crafted URL containing Arabic script and whitespace characters could have hidden the true origin of the page, resulting in a potential spoofing attack. This vulnerability affects Firefox < 133, Firefox ESR < 128.5, Thunderbird < 133, and Thunderbird < 128.5.
Scope: local
sid: resolved (fixed in 133.0-1)
debian
CVE-2023-5723P4MEDIUMCVSS 5.3fixed in firefox 119.0-1 (sid)2023
CVE-2023-5723 [MEDIUM] CVE-2023-5723: firefox - An attacker with temporary script access to a site could have set a cookie conta...
An attacker with temporary script access to a site could have set a cookie containing invalid characters using `document.cookie` that could have led to unknown errors. This vulnerability affects Firefox < 119.
Scope: local
sid: resolved (fixed in 119.0-1)
debian
CVE-2024-9398P4MEDIUMCVSS 5.3fixed in firefox 131.0-1 (sid)2024
CVE-2024-9398 [MEDIUM] CVE-2024-9398: firefox - By checking the result of calls to `window.open` with specifically set protocol ...
By checking the result of calls to `window.open` with specifically set protocol handlers, an attacker could determine if the application which implements that protocol handler is installed. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and Thunderbird < 131.
Scope: local
sid: resolved (fixed in 131.0-1)
debian