Homepage

firefox vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the firefox package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Out-of-bounds Write

<29.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<29.0+build1-0ubuntu0.12.10.3
  • M
Cross-site Scripting (XSS)

<29.0+build1-0ubuntu0.12.10.3
  • M
Buffer Overflow

<29.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<29.0+build1-0ubuntu0.12.10.3
  • M
Out-of-bounds Write

<29.0+build1-0ubuntu0.12.10.3
  • M
Improper Privilege Management

<29.0+build1-0ubuntu0.12.10.3
  • M
Out-of-Bounds

<29.0+build1-0ubuntu0.12.10.3
  • M
CVE-2014-1519

<29.0+build1-0ubuntu0.12.10.3
  • M
CVE-2014-1518

<29.0+build1-0ubuntu0.12.10.3
  • M
Improper Privilege Management

<29.0+build1-0ubuntu0.12.10.3
  • M
Out-of-bounds Read

<29.0+build1-0ubuntu0.12.10.3
  • M
Improper Input Validation

<29.0+build1-0ubuntu0.12.10.3
  • M
CVE-2014-1494

<28.0+build2-0ubuntu0.12.10.1
  • M
Origin Validation Error

<28.0+build2-0ubuntu0.12.10.1
  • M
Information Exposure

<28.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<28.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<28.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Read

<28.0+build2-0ubuntu0.12.10.1
  • L
Buffer Overflow

<28.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<28.0+build2-0ubuntu0.12.10.1
  • M
Improper Verification of Cryptographic Signature

<28.0+build2-0ubuntu0.12.10.1
  • M
CVE-2014-1499

<28.0+build2-0ubuntu0.12.10.1
  • L
Resource Exhaustion

<28.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<28.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<28.0+build2-0ubuntu0.12.10.1
  • M
Improper Privilege Management

<28.0+build2-0ubuntu0.12.10.1
  • M
Improper Privilege Management

<28.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Read

<28.0+build2-0ubuntu0.12.10.1
  • M
CVE-2014-1479

<27.0+build1-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<27.0+build1-0ubuntu0.12.10.1
  • M
Inadequate Encryption Strength

<27.0+build1-0ubuntu0.12.10.1
  • M
CVE-2014-1477

<27.0+build1-0ubuntu0.12.10.1
  • M
Race Condition

<27.0+build1-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<27.0+build1-0ubuntu0.12.10.1
  • M
Origin Validation Error

<27.0+build1-0ubuntu0.12.10.1
  • M
Improper Restriction of Rendered UI Layers or Frames

<27.0+build1-0ubuntu0.12.10.1
  • M
CVE-2014-1488

<27.0+build1-0ubuntu0.12.10.1
  • M
CVE-2014-1485

<27.0+build1-0ubuntu0.12.10.1
  • M
Improper Restriction of Rendered UI Layers or Frames

<27.0+build1-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<27.0+build1-0ubuntu0.12.10.1
  • M
Use After Free

<27.0+build1-0ubuntu0.12.10.1
  • M
CVE-2014-1481

<27.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-5609

<26.0+build2-0ubuntu0.12.10.2
  • M
Arbitrary Code Injection

<26.0+build2-0ubuntu0.12.10.2
  • L
Cryptographic Issues

<26.0+build2-0ubuntu0.12.10.2
  • M
Use After Free

<26.0+build2-0ubuntu0.12.10.2
  • L
Integer Overflow or Wraparound

<26.0+build2-0ubuntu0.12.10.2
  • L
Cross-site Scripting (XSS)

<26.0+build2-0ubuntu0.12.10.2
  • L
Improper Restriction of Rendered UI Layers or Frames

<26.0+build2-0ubuntu0.12.10.2
  • M
Use After Free

<26.0+build2-0ubuntu0.12.10.2
  • M
Out-of-bounds Write

<26.0+build2-0ubuntu0.12.10.2
  • L
Information Exposure

<26.0+build2-0ubuntu0.12.10.2
  • M
Use After Free

<26.0+build2-0ubuntu0.12.10.2
  • L
CVE-2013-5611

<26.0+build2-0ubuntu0.12.10.2
  • M
CVE-2013-5615

<26.0+build2-0ubuntu0.12.10.2
  • M
Numeric Errors

<25.0.1+build1-0ubuntu0.12.10.1
  • M
Information Exposure

<26.0+build2-0ubuntu0.12.10.2
  • M
Numeric Errors

<26.0+build2-0ubuntu0.12.10.2
  • M
Improper Input Validation

<25.0.1+build1-0ubuntu0.12.10.1
  • M
Numeric Errors

<25.0.1+build1-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5600

<25.0+build3-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5590

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5599

<25.0+build3-0ubuntu0.12.10.1
  • L
Improper Input Validation

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5591

<25.0+build3-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5597

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5592

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5603

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-5601

<25.0+build3-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<25.0+build3-0ubuntu0.12.10.1
  • M
CVE-2013-1739

<25.0+build3-0ubuntu0.12.10.1
  • M
Resource Management Errors

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<24.0+build1-0ubuntu0.12.10.1
  • L
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Improper Input Validation

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<24.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<24.0+build1-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<23.0+build2-0ubuntu0.12.10.1
  • M
Resource Management Errors

<23.0+build2-0ubuntu0.12.10.1
  • L
CVE-2013-1708

<23.0+build2-0ubuntu0.12.10.1
  • M
Improper Input Validation

<23.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<23.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<23.0+build2-0ubuntu0.12.10.1
  • M
CVE-2013-1702

<23.0+build2-0ubuntu0.12.10.1
  • M
CVE-2013-1701

<23.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<23.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<23.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<23.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • M
Improper Input Validation

<22.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-1682

<22.0+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<22.0+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<22.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<22.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<22.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • L
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • L
Cryptographic Issues

<22.0+build1-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<22.0+build1-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<22.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-1683

<22.0+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.10.2
  • M
CVE-2013-0801

<21.0+build1-0ubuntu0.12.10.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.10.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.10.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.10.2
  • M
Resource Management Errors

<21.0+build1-0ubuntu0.12.10.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.10.2
  • M
Access Restriction Bypass

<21.0+build1-0ubuntu0.12.10.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.10.2
  • M
CVE-2013-1669

<21.0+build1-0ubuntu0.12.10.2
  • L
Improper Input Validation

<21.0+build1-0ubuntu0.12.10.2
  • M
Out-of-Bounds

<21.0+build1-0ubuntu0.12.10.2
  • M
Access Restriction Bypass

<20.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0788

<20.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0800

<20.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0794

<20.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0796

<20.0+build1-0ubuntu0.12.10.3
  • L
Information Exposure

<20.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0789

<20.0+build1-0ubuntu0.12.10.3
  • L
Out-of-Bounds

<20.0+build1-0ubuntu0.12.10.3
  • M
Cross-site Scripting (XSS)

<20.0+build1-0ubuntu0.12.10.3
  • L
Inadequate Encryption Strength

<25.0.1+build1-0ubuntu0.12.10.1
  • M
Resource Management Errors

<19.0.2+build1-0ubuntu0.12.10.1
  • M
Use After Free

<19.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0773

<19.0+build1-0ubuntu0.12.10.1
  • M
Use After Free

<19.0+build1-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<19.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0783

<19.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0765

<19.0+build1-0ubuntu0.12.10.1
  • M
Out-of-bounds Read

<19.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0774

<19.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0784

<19.0+build1-0ubuntu0.12.10.1
  • M
Use After Free

<19.0+build1-0ubuntu0.12.10.1
  • M
Out-of-bounds Read

<19.0+build1-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<19.0+build1-0ubuntu0.12.10.1
  • M
Improper Certificate Validation

<19.0+build1-0ubuntu0.12.10.1
  • M
Use After Free

<19.0+build1-0ubuntu0.12.10.1
  • M
CVE-2013-0743

<18.0+build1-0ubuntu0.12.10.3
  • M
Out-of-bounds Write

<18.0+build1-0ubuntu0.12.10.3
  • M
Out-of-bounds Write

<18.0+build1-0ubuntu0.12.10.3
  • M
Integer Overflow or Wraparound

<18.0+build1-0ubuntu0.12.10.3
  • M
Improper Input Validation

<18.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0746

<18.0+build1-0ubuntu0.12.10.3
  • M
Inadequate Encryption Strength

<18.0+build1-0ubuntu0.12.10.3
  • M
Improper Authentication

<18.0+build1-0ubuntu0.12.10.3
  • M
Arbitrary Code Injection

<18.0+build1-0ubuntu0.12.10.3
  • M
Out-of-Bounds

<18.0+build1-0ubuntu0.12.10.3
  • M
Buffer Overflow

<18.0+build1-0ubuntu0.12.10.3
  • M
Arbitrary Code Injection

<18.0+build1-0ubuntu0.12.10.3
  • M
Improper Input Validation

<18.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0769

<18.0+build1-0ubuntu0.12.10.3
  • M
Out-of-bounds Read

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Information Exposure

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0749

<18.0+build1-0ubuntu0.12.10.3
  • M
Use After Free

<18.0+build1-0ubuntu0.12.10.3
  • M
CVE-2013-0770

<18.0+build1-0ubuntu0.12.10.3
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Request Forgery (CSRF)

<17.0+build2-0ubuntu0.12.10.1
  • M
Information Exposure

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
CVE-2012-5843

<17.0+build2-0ubuntu0.12.10.1
  • M
Integer Overflow or Wraparound

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-bounds Write

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<17.0+build2-0ubuntu0.12.10.1
  • M
CVE-2012-5842

<17.0+build2-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Access Restriction Bypass

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<17.0+build2-0ubuntu0.12.10.1
  • M
Use After Free

<17.0+build2-0ubuntu0.12.10.1
  • M
Out-of-Bounds

<17.0+build2-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Cross-site Scripting (XSS)

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Arbitrary Code Injection

<16.0.2+build1-0ubuntu0.12.10.1
  • M
Improper Input Validation

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
CVE-2012-3982

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Improper Privilege Management

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • H
Access Restriction Bypass

<16.0+build1-0ubuntu1
  • M
Out-of-bounds Read

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
Use After Free

<16.0+build1-0ubuntu1
  • M
CVE-2012-5354

<16.0+build1-0ubuntu1
  • M
Out-of-Bounds

<16.0+build1-0ubuntu1
  • M
CVE-2012-3984

<16.0+build1-0ubuntu1
  • M
Cryptographic Issues

<15.0+build1-0ubuntu1
  • M
CVE-2012-3962

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
CVE-2012-1971

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Numeric Errors

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Arbitrary Code Injection

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Out-of-bounds Write

<15.0+build1-0ubuntu1
  • M
Access Restriction Bypass

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Use After Free

<15.0+build1-0ubuntu1
  • M
Resource Management Errors

<15.0+build1-0ubuntu1
  • M
Information Exposure

<15.0+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<15.0+build1-0ubuntu1
  • M
Out-of-Bounds

<14.0~b6+build2-0ubuntu2
  • M
Information Exposure

<4.0.1+build1+nobinonly-0ubuntu0.11.04.1
  • M
Information Exposure

<12.0+build1-0ubuntu0.12.04.1