Homepage
About Snyk

firefox vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the firefox package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • L
CVE-2024-9936

<131.0.3-r0
  • L
GHSA-8c7g-vx5g-cmpg

<131.0.3-r0
  • M
Open Redirect

<130.0-r0
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<130.0-r0
  • L
GHSA-x565-97fv-jfr5

<130.0-r0
  • C
Out-of-bounds Write

<130.0-r0
  • C
Out-of-bounds Write

<130.0-r0
  • H
CVE-2024-8382

<130.0-r0
  • H
CVE-2024-8383

<130.0-r0
  • L
GHSA-pm7g-mpjq-33gr

<130.0-r0
  • L
GHSA-j755-mmjr-g7rh

<130.0-r0
  • C
Out-of-bounds Write

<130.0-r0
  • L
GHSA-m294-4vh4-9qwg

<130.0-r0
  • M
CVE-2024-8388

<130.0-r0
  • L
GHSA-p34f-6xg6-mcrp

<130.0-r0
  • L
GHSA-6q4m-8cmc-2222

<130.0-r0
  • L
GHSA-ph32-hgpc-r5j4

<130.0-r0
  • L
GHSA-j3m3-gfhr-jmqf

<130.0-r0
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<130.0-r0
  • L
GHSA-794f-5gfq-xmmq

<130.0-r0
  • L
GHSA-hj65-9wfc-jmf4

<130.0.1-r0
  • M
Open Redirect

<130.0.1-r0
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<129.0.2-r0
  • H
Use After Free

<129.0.2-r0
  • L
GHSA-563c-g7mm-g4xp

<129.0.2-r0
  • M
CVE-2024-7518

<129.0.2-r0
  • L
GHSA-3jj9-9269-99m2

<129.0.2-r0
  • L
GHSA-gx25-vx95-m52w

<129.0.2-r0
  • M
Use of Uninitialized Resource

<129.0.2-r0
  • H
Use After Free

<129.0.2-r0
  • L
GHSA-cr8r-7g9p-hcx6

<129.0.2-r0
  • L
GHSA-7jrj-xq8x-h553

<129.0.2-r0
  • L
GHSA-7j5g-jfh2-w58c

<129.0.2-r0
  • L
GHSA-7369-x5q2-rh2m

<129.0.2-r0
  • M
Cross-site Scripting (XSS)

<129.0.2-r0
  • M
Cross-site Scripting (XSS)

<129.0.2-r0
  • M
CVE-2024-7529

<129.0.2-r0
  • H
Use After Free

<129.0.2-r0
  • C
Out-of-bounds Write

<129.0.2-r0
  • L
GHSA-9wvx-3hw8-4ghf

<129.0.2-r0
  • L
GHSA-69x6-6jqx-q847

<129.0.2-r0
  • L
GHSA-7m9h-4qg6-4hmh

<129.0.2-r0
  • M
Cross-site Scripting (XSS)

<129.0.2-r0
  • L
GHSA-5x3f-3wg2-mc2h

<129.0.2-r0
  • H
Improper Handling of Exceptional Conditions

<129.0.2-r0
  • M
CVE-2024-7531

<129.0.2-r0
  • H
Out-of-bounds Read

<129.0.2-r0
  • H
Incorrect Default Permissions

<129.0.2-r0
  • L
GHSA-w3xp-69rr-q6gw

<129.0.2-r0
  • M
Cross-site Scripting (XSS)

<129.0.2-r0
  • L
GHSA-4xc3-7r7g-7vx3

<129.0.2-r0
  • H
CVE-2024-7523

<129.0.2-r0
  • L
GHSA-xmm2-x5jc-rvmh

<129.0.2-r0
  • L
GHSA-hf5v-h65q-2g27

<129.0.2-r0
  • L
GHSA-mcjx-2c4v-mvg9

<129.0.2-r0
  • L
GHSA-cr94-c6j4-q6g5

<129.0.2-r0
  • L
GHSA-j476-hf2q-984g

<128.0-r0
  • L
CVE-2024-6611

<128.0-r0
  • L
CVE-2024-6614

<128.0-r0
  • L
GHSA-v6r5-wp7h-cj77

<128.0-r0
  • L
CVE-2024-6612

<128.0-r0
  • M
CVE-2024-6608

<128.0-r0
  • L
GHSA-xcm3-jhmr-9fhh

<128.0-r0
  • M
CVE-2024-6610

<128.0-r0
  • L
CVE-2024-6605

<128.0-r0
  • L
GHSA-fj5c-r5jw-5wp8

<128.0-r0
  • L
GHSA-vr96-9xq4-q4jp

<128.0-r0
  • L
GHSA-cpfv-mr66-74v6

<128.0-r0
  • L
GHSA-h7q8-vff8-p3j8

<128.0-r0
  • L
CVE-2024-6607

<128.0-r0
  • L
GHSA-8c8x-848r-wqq7

<128.0-r0
  • H
CVE-2024-6609

<128.0-r0
  • L
CVE-2024-6613

<128.0-r0
  • L
GHSA-9vqr-5j64-p9wr

<128.0-r0
  • L
CVE-2024-6615

<128.0-r0
  • L
GHSA-cpm6-fp82-cq6m

<128.0-r0
  • L
GHSA-gq55-cjrv-p49j

<128.0-r0
  • L
CVE-2024-6600

<128.0-r0
  • L
CVE-2024-6602

<128.0-r0
  • L
CVE-2024-6604

<128.0-r0
  • L
GHSA-3wq7-w8r7-pmvh

<128.0-r0
  • L
CVE-2024-6603

<128.0-r0
  • L
CVE-2024-6606

<128.0-r0
  • L
GHSA-x2q3-f99c-25ff

<128.0-r0
  • L
CVE-2024-6601

<128.0-r0
  • L
GHSA-hr59-q2gm-7hrj

<128.0-r0
  • L
GHSA-rjwc-235r-8986

<128.0-r0
  • L
GHSA-r595-x79c-68p4

<128.0-r0
  • L
GHSA-frpv-8jj9-m3cv

<127.0.2-r0
  • L
CVE-2024-5688

<127.0.2-r0
  • L
GHSA-3jcf-9x2f-86h4

<127.0.2-r0
  • L
GHSA-gmgg-93h8-cp32

<127.0.2-r0
  • L
GHSA-4c8g-9w4h-h6xm

<127.0.2-r0
  • L
GHSA-xhxm-p3qv-qprc

<127.0.2-r0
  • L
GHSA-j6vm-3wj6-fwrh

<127.0.2-r0
  • H
Use After Free

<127.0.2-r0
  • L
GHSA-gfgx-4754-9hhp

<127.0.2-r0
  • M
CVE-2024-5691

<127.0.2-r0
  • L
GHSA-893r-mpwj-qhhg

<127.0.2-r0
  • M
CVE-2024-38312

<127.0.2-r0
  • L
CVE-2024-5687

<127.0.2-r0
  • C
Out-of-bounds Write

<127.0.2-r0
  • L
CVE-2024-5701

<127.0.2-r0
  • L
GHSA-6fj5-m574-p4w9

<127.0.2-r0
  • M
Improper Restriction of Rendered UI Layers or Frames

<127.0.2-r0
  • L
GHSA-g23m-h4v3-g2qq

<127.0.2-r0
  • L
CVE-2024-5696

<127.0.2-r0
  • L
GHSA-ffh4-92gv-qvv5

<127.0.2-r0
  • M
CVE-2024-5689

<127.0.2-r0
  • L
GHSA-f78g-xm2r-gm6j

<127.0.2-r0
  • L
GHSA-pqfc-h2m7-5p9p

<127.0.2-r0
  • L
GHSA-pq6v-hjqm-frww

<127.0.2-r0
  • L
CVE-2024-5692

<127.0.2-r0
  • L
CVE-2024-5699

<127.0.2-r0
  • L
GHSA-3fxj-qpxv-j6qj

<127.0.2-r0
  • M
Information Exposure

<127.0.2-r0
  • L
CVE-2024-5700

<127.0.2-r0
  • L
GHSA-pxf8-583j-3rmh

<127.0.2-r0
  • M
CVE-2024-5697

<127.0.2-r0
  • M
CVE-2024-38313

<127.0.2-r0
  • L
GHSA-hx83-hmj3-pffc

<127.0.2-r0
  • L
CVE-2024-5693

<127.0.2-r0