cbcvebase.

Debian Firefox vulnerabilities

1,550 known vulnerabilities affecting debian/firefox.

Total CVEs
1,550
CISA KEV
11
actively exploited
Public exploits
39
Exploited in wild
20
Severity breakdown
CRITICAL333HIGH633MEDIUM542LOW42

Vulnerabilities

Page 73 of 78
CVE-2024-0742P4MEDIUMCVSS 4.3fixed in firefox 122.0-1 (sid)2024
CVE-2024-0742 [MEDIUM] CVE-2024-0742: firefox - It was possible for certain browser prompts and dialogs to be activated or dismi... It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after page load. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. Scope: local sid: resolved (fixed in 122.0-1)
debian
CVE-2022-34472P4MEDIUMCVSS 4.3fixed in firefox 102.0-1 (sid)2022
CVE-2022-34472 [MEDIUM] CVE-2022-34472: firefox - If there was a PAC URL set and the server that hosts the PAC was not reachable, ... If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown. This vulnerability affects Firefox < 102, Firefox ESR < 91.11, Thunderbird < 102, and Thunderbird < 91.11. Scope: local sid: resolved (fixed in 102.0-1)
debian
CVE-2023-4581P4MEDIUMCVSS 4.3fixed in firefox 117.0-1 (sid)2023
CVE-2023-4581 [MEDIUM] CVE-2023-4581: firefox - Excel `.xll` add-in files did not have a blocklist entry in Firefox's executable... Excel `.xll` add-in files did not have a blocklist entry in Firefox's executable blocklist which allowed them to be downloaded without any warning of their potential harm. This vulnerability affects Firefox < 117, Firefox ESR < 102.15, Firefox ESR < 115.2, Thunderbird < 102.15, and Thunderbird < 115.2. Scope: local sid: resolved (fixed in 117.0-1)
debian
CVE-2024-4767P4MEDIUMCVSS 4.3fixed in firefox 126.0-1 (sid)2024
CVE-2024-4767 [MEDIUM] CVE-2024-4767: firefox - If the `browser.privatebrowsing.autostart` preference is enabled, IndexedDB file... If the `browser.privatebrowsing.autostart` preference is enabled, IndexedDB files were not properly deleted when the window was closed. This preference is disabled by default in Firefox. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11. Scope: local sid: resolved (fixed in 126.0-1)
debian
CVE-2025-6425P4MEDIUMCVSS 4.3fixed in firefox 140.0-1 (sid)2025
CVE-2025-6425 [MEDIUM] CVE-2025-6425: firefox - An attacker who enumerated resources from the WebCompat extension could have obt... An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser, and persisted between containers and normal/private browsing mode, but not profiles. This vulnerability affects Firefox < 140, Firefox ESR < 115.25, Firefox ESR < 128.12, Thunderbird < 140, and Thunderbird < 128.12. Scope: local sid: r
debian
CVE-2025-6434P4MEDIUMCVSS 4.3fixed in firefox 140.0-1 (sid)2025
CVE-2025-6434 [MEDIUM] CVE-2025-6434: firefox - The exception page for the HTTPS-Only feature, displayed when a website is opene... The exception page for the HTTPS-Only feature, displayed when a website is opened via HTTP, lacked an anti-clickjacking delay, potentially allowing an attacker to trick a user into granting an exception and loading a webpage over HTTP. This vulnerability affects Firefox < 140 and Thunderbird < 140. Scope: local sid: resolved (fixed in 140.0-1)
debian
CVE-2022-3266P4MEDIUMCVSS 5.5fixed in firefox 105.0-1 (sid)2022
CVE-2022-3266 [MEDIUM] CVE-2022-3266: firefox - An out-of-bounds read can occur when decoding H264 video. This results in a pote... An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox < 105. Scope: local sid: resolved (fixed in 105.0-1)
debian
CVE-2024-6613P4MEDIUMCVSS 5.5fixed in firefox 128.0-1 (sid)2024
CVE-2024-6613 [MEDIUM] CVE-2024-6613: firefox - The frame iterator could get stuck in a loop when encountering certain wasm fram... The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox < 128 and Thunderbird < 128. Scope: local sid: resolved (fixed in 128.0-1)
debian
CVE-2016-1958P4MEDIUMCVSS 4.3fixed in firefox 45.0-1 (sid)2016
CVE-2016-1958 [MEDIUM] CVE-2016-1958: firefox - browser/base/content/browser.js in Mozilla Firefox before 45.0 and Firefox ESR 3... browser/base/content/browser.js in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to spoof the address bar via a javascript: URL. Scope: local sid: resolved (fixed in 45.0-1)
debian
CVE-2018-12367P4MEDIUMCVSS 4.3fixed in firefox 61.0-1 (sid)2018
CVE-2018-12367 [MEDIUM] CVE-2018-12367: firefox - In the previous mitigations for Spectre, the resolution or precision of various ... In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals. In that work PerformanceNavigationTiming was not adjusted but it was found that it could be used as a precision timer. This vulnerability affects Thunderbird < 60, Firefox ESR < 60.1, and Firefox < 61. Sco
debian
CVE-2006-2782P4MEDIUMCVSS 4.3fixed in firefox 1.5.dfsg+1.5.0.4-1 (sid)2006
CVE-2006-2782 [MEDIUM] CVE-2006-2782: firefox - Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which... Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control. Scope: local sid: resolved (fixed in 1.5.dfsg+1.5.0.4-1)
debian
CVE-2016-5251P4MEDIUMCVSS 4.3fixed in firefox 48.0-1 (sid)2016
CVE-2016-5251 [MEDIUM] CVE-2016-5251: firefox - Mozilla Firefox before 48.0 allows remote attackers to spoof the location bar vi... Mozilla Firefox before 48.0 allows remote attackers to spoof the location bar via crafted characters in the media type of a data: URL. Scope: local sid: resolved (fixed in 48.0-1)
debian
CVE-2021-43546P4MEDIUMCVSS 4.3fixed in firefox 95.0-1 (sid)2021
CVE-2021-43546 [MEDIUM] CVE-2021-43546: firefox - It was possible to recreate previous cursor spoofing attacks against users with ... It was possible to recreate previous cursor spoofing attacks against users with a zoomed native cursor. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95. Scope: local sid: resolved (fixed in 95.0-1)
debian
CVE-2020-12401P4MEDIUMCVSS 4.7fixed in firefox 80.0-1 (sid)2020
CVE-2020-12401 [MEDIUM] CVE-2020-12401: firefox - During ECDSA signature generation, padding applied in the nonce designed to ensu... During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in variable-time execution dependent on secret data. This vulnerability affects Firefox < 80 and Firefox for Android < 80. Scope: local sid: resolved (fixed in 80.0-1)
debian
CVE-2020-12400P4MEDIUMCVSS 4.7fixed in firefox 80.0-1 (sid)2020
CVE-2020-12400 [MEDIUM] CVE-2020-12400: firefox - When converting coordinates from projective to affine, the modular inversion was... When converting coordinates from projective to affine, the modular inversion was not performed in constant time, resulting in a possible timing-based side channel attack. This vulnerability affects Firefox < 80 and Firefox for Android < 80. Scope: local sid: resolved (fixed in 80.0-1)
debian
CVE-2021-23969P4MEDIUMCVSS 4.3fixed in firefox 86.0-1 (sid)2021
CVE-2021-23969 [MEDIUM] CVE-2021-23969: firefox - As specified in the W3C Content Security Policy draft, when creating a violation... As specified in the W3C Content Security Policy draft, when creating a violation report, "User agents need to ensure that the source file is the URL requested by the page, pre-redirects. If that’s not possible, user agents need to strip the URL down to an origin to avoid unintentional leakage." Under certain types of redirects, Firefox incorrectly set the source f
debian
CVE-2018-5108P4MEDIUMCVSS 4.3fixed in firefox 58.0-1 (sid)2018
CVE-2018-5108 [MEDIUM] CVE-2018-5108: firefox - A Blob URL can violate origin attribute segregation, allowing it to be accessed ... A Blob URL can violate origin attribute segregation, allowing it to be accessed from a private browsing tab and for data to be passed between the private browsing tab and a normal tab. This could allow for the leaking of private information specific to the private browsing context. This issue is mitigated by the requirement that the user enter the Blob URL manually
debian
CVE-2021-23953P4MEDIUMCVSS 4.3fixed in firefox 85.0-1 (sid)2021
CVE-2021-23953 [MEDIUM] CVE-2021-23953: firefox - If a user clicked into a specifically crafted PDF, the PDF reader could be confu... If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. This vulnerability affects Firefox < 85, Thunderbird < 78.7, and Firefox ESR < 78.7. Scope: local sid: resolved (fixed in 85.0-1)
debian
CVE-2021-29959P4MEDIUMCVSS 4.3fixed in firefox 89.0-1 (sid)2021
CVE-2021-29959 [MEDIUM] CVE-2021-29959: firefox - When a user has already allowed a website to access microphone and camera, disab... When a user has already allowed a website to access microphone and camera, disabling camera sharing would not fully prevent the website from re-enabling it without an additional prompt. This was only possible if the website kept recording with the microphone until re-enabling the camera. This vulnerability affects Firefox < 89. Scope: local sid: resolved (fixed in
debian
CVE-2021-29974P4MEDIUMCVSS 4.3fixed in firefox 90.0-1 (sid)2021
CVE-2021-29974 [MEDIUM] CVE-2021-29974: firefox - When network partitioning was enabled, e.g. as a result of Enhanced Tracking Pro... When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security (which implies that the error should not be override-able.) This issue did not affect the network connections, and they were correctly upgraded to
debian
Debian Firefox vulnerabilities | cvebase