Homepage

firefox vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the firefox package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Cross-site Request Forgery (CSRF)

<61.0+build3-0ubuntu0.17.10.1
  • M
Use After Free

<61.0+build3-0ubuntu0.17.10.1
  • M
Use After Free

<61.0+build3-0ubuntu0.17.10.1
  • M
Out-of-bounds Read

<61.0+build3-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<61.0+build3-0ubuntu0.17.10.1
  • M
Integer Overflow or Wraparound

<61.0+build3-0ubuntu0.17.10.1
  • M
Information Exposure

<61.0+build3-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<61.0+build3-0ubuntu0.17.10.1
  • L
Cross-site Request Forgery (CSRF)

<61.0+build3-0ubuntu0.17.10.1
  • M
Integer Overflow or Wraparound

<61.0+build3-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<61.0+build3-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<61.0+build3-0ubuntu0.17.10.1
  • M
Information Exposure

<61.0+build3-0ubuntu0.17.10.1
  • M
Integer Overflow or Wraparound

<61.0+build3-0ubuntu0.17.10.1
  • M
Improper Input Validation

<61.0+build3-0ubuntu0.17.10.1
  • M
Improper Input Validation

<61.0+build3-0ubuntu0.17.10.1
  • M
Incorrect Authorization

<61.0+build3-0ubuntu0.17.10.1
  • H
Cross-site Scripting (XSS)

<58.0.1+build1-0ubuntu0.17.10.1
  • M
Out-of-bounds Write

<60.0.2+build1-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<59.0+build5-0ubuntu0.17.10.1
  • M
Missing Authorization

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<60.0+build2-0ubuntu0.17.10.1
  • L
CVE-2018-5142

<59.0+build5-0ubuntu0.17.10.1
  • M
CVE-2018-5168

<60.0+build2-0ubuntu0.17.10.1
  • M
Origin Validation Error

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<57.0+build4-0ubuntu0.17.10.5
  • M
Out-of-bounds Write

<59.0+build5-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • L
CVE-2017-7820

<56.0+build6-0ubuntu1
  • M
Out-of-Bounds

<60.0+build2-0ubuntu0.17.10.1
  • M
Arbitrary Code Injection

<60.0+build2-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<58.0+build6-0ubuntu0.17.10.1
  • M
Missing Authorization

<59.0+build5-0ubuntu0.17.10.1
  • M
Use After Free

<59.0+build5-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<60.0+build2-0ubuntu0.17.10.1
  • M
Cross-site Scripting (XSS)

<60.0+build2-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<54.0+build3-0ubuntu1
  • L
Improper Input Validation

<57.0+build4-0ubuntu0.17.10.5
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • L
CVE-2017-7822

<56.0+build6-0ubuntu1
  • M
Out-of-Bounds

<57.0+build4-0ubuntu0.17.10.5
  • M
Improper Input Validation

<55.0.2+build1-0ubuntu4
  • M
Out-of-bounds Read

<55.0.2+build1-0ubuntu4
  • M
Improper Input Validation

<55.0.2+build1-0ubuntu4
  • M
CVE-2018-5105

<58.0+build6-0ubuntu0.17.10.1
  • L
Cross-site Scripting (XSS)

<57.0+build4-0ubuntu0.17.10.5
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<56.0+build6-0ubuntu1
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • L
Cross-site Scripting (XSS)

<57.0+build4-0ubuntu0.17.10.5
  • M
Improper Input Validation

<56.0+build6-0ubuntu1
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Cross-site Scripting (XSS)

<56.0+build6-0ubuntu1
  • M
Improper Input Validation

<55.0.2+build1-0ubuntu4
  • M
Out-of-bounds Read

<56.0+build6-0ubuntu1
  • M
Use After Free

<57.0+build4-0ubuntu0.17.10.5
  • M
CVE-2017-7781

<55.0.2+build1-0ubuntu4
  • M
Improper Input Validation

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Out-of-bounds Read

<60.0+build2-0ubuntu0.17.10.1
  • L
Information Exposure

<59.0+build5-0ubuntu0.17.10.1
  • M
Information Exposure

<58.0+build6-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Improper Privilege Management

<60.0+build2-0ubuntu0.17.10.1
  • M
Use After Free

<59.0.2+build1-0ubuntu0.17.10.1
  • M
Link Following

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<60.0+build2-0ubuntu0.17.10.1
  • M
Improper Input Validation

<60.0+build2-0ubuntu0.17.10.1
  • M
Information Exposure

<60.0+build2-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<60.0+build2-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Out-of-bounds Write

<60.0+build2-0ubuntu0.17.10.1
  • M
Improper Input Validation

<57.0+build4-0ubuntu0.17.10.5
  • M
CVE-2018-5117

<58.0+build6-0ubuntu0.17.10.1
  • M
Cross-site Scripting (XSS)

<57.0+build4-0ubuntu0.17.10.5
  • M
Out-of-Bounds

<60.0+build2-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<59.0+build5-0ubuntu0.17.10.1
  • L
Improper Input Validation

<59.0+build5-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Arbitrary Code Injection

<55.0.2+build1-0ubuntu4
  • M
Improper Input Validation

<59.0+build5-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Out-of-bounds Write

<59.0.1+build1-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<59.0+build5-0ubuntu0.17.10.1
  • M
Improper Input Validation

<57.0+build4-0ubuntu0.17.10.5
  • M
Information Exposure

<60.0+build2-0ubuntu0.17.10.1
  • M
Files or Directories Accessible to External Parties

<58.0+build6-0ubuntu0.17.10.1
  • L
Out-of-bounds Write

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<59.0+build5-0ubuntu0.17.10.1
  • M
Improper Input Validation

<56.0+build6-0ubuntu1
  • M
Out-of-Bounds

<54.0+build3-0ubuntu1
  • M
CVE-2017-7830

<57.0+build4-0ubuntu0.17.10.5
  • M
Improper Privilege Management

<55.0.2+build1-0ubuntu4
  • M
Cross-site Scripting (XSS)

<60.0+build2-0ubuntu0.17.10.1
  • L
Cross-site Scripting (XSS)

<59.0+build5-0ubuntu0.17.10.1
  • M
Arbitrary Code Injection

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Improper Input Validation

<60.0+build2-0ubuntu0.17.10.1
  • M
Use After Free

<56.0+build6-0ubuntu1
  • M
Incorrect Permission Assignment for Critical Resource

<56.0+build6-0ubuntu1
  • M
Integer Overflow or Wraparound

<58.0+build6-0ubuntu0.17.10.1
  • M
Improper Input Validation

<59.0+build5-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Information Exposure

<56.0+build6-0ubuntu1
  • L
Information Exposure

<59.0+build5-0ubuntu0.17.10.1
  • M
Information Exposure

<57.0.1+build2-0ubuntu0.17.10.1
  • M
Information Exposure

<57.0.1+build2-0ubuntu0.17.10.1
  • M
Use After Free

<60.0+build2-0ubuntu0.17.10.1
  • M
Information Exposure

<59.0+build5-0ubuntu0.17.10.1
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Incorrect Default Permissions

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<56.0+build6-0ubuntu1
  • M
Information Exposure

<58.0+build6-0ubuntu0.17.10.1
  • M
Use After Free

<58.0+build6-0ubuntu0.17.10.1
  • M
Cross-site Scripting (XSS)

<60.0+build2-0ubuntu0.17.10.1
  • M
Information Exposure

<59.0+build5-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<60.0+build2-0ubuntu0.17.10.1
  • M
Improper Preservation of Permissions

<60.0+build2-0ubuntu0.17.10.1
  • M
Improper Input Validation

<60.0+build2-0ubuntu0.17.10.1
  • L
Information Exposure

<57.0+build4-0ubuntu0.17.10.5
  • M
Improper Input Validation

<56.0+build6-0ubuntu1
  • M
Information Exposure

<55.0.2+build1-0ubuntu4
  • M
Use of a Broken or Risky Cryptographic Algorithm

<60.0+build2-0ubuntu0.17.10.1
  • M
Improper Input Validation

<57.0+build4-0ubuntu0.17.10.5
  • M
Information Exposure

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<56.0+build6-0ubuntu1
  • M
Origin Validation Error

<55.0.2+build1-0ubuntu4
  • M
Improper Input Validation

<60.0+build2-0ubuntu0.17.10.1
  • M
Origin Validation Error

<58.0+build6-0ubuntu0.17.10.1
  • M
CVE-2017-7835

<57.0+build4-0ubuntu0.17.10.5
  • M
Information Exposure

<59.0+build5-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • L
Information Exposure

<58.0+build6-0ubuntu0.17.10.1
  • M
Out-of-Bounds

<56.0+build6-0ubuntu1
  • M
Cross-site Scripting (XSS)

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<57.0+build4-0ubuntu0.17.10.5
  • M
Out-of-Bounds

<56.0+build6-0ubuntu1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<56.0+build6-0ubuntu1
  • M
Information Exposure

<57.0.4+build1-0ubuntu0.17.10.1
  • M
Information Exposure

<57.0.4+build1-0ubuntu0.17.10.1
  • M
Information Exposure

<57.0.4+build1-0ubuntu0.17.10.1
  • M
CVE-2016-2834

<47.0+build3-0ubuntu1
  • M
Improper Data Handling

<43.0.4+build3-0ubuntu1
  • M
Cryptographic Issues

<39.0+build5-0ubuntu1
  • M
Information Exposure

<12.0+build1-0ubuntu0.12.04.1