Homepage

firefox vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the firefox package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Incorrect Authorization

<68.0+build3-0ubuntu0.18.10.1
  • M
Arbitrary Code Injection

<68.0+build3-0ubuntu0.18.10.1
  • M
CVE-2019-11725

<68.0+build3-0ubuntu0.18.10.1
  • M
Improper Input Validation

<68.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<68.0+build3-0ubuntu0.18.10.1
  • M
Use After Free

<68.0+build3-0ubuntu0.18.10.1
  • M
CVE-2019-11721

<68.0+build3-0ubuntu0.18.10.1
  • M
Arbitrary Code Injection

<68.0+build3-0ubuntu0.18.10.1
  • M
Improper Certificate Validation

<68.0+build3-0ubuntu0.18.10.1
  • M
Cross-site Request Forgery (CSRF)

<68.0+build3-0ubuntu0.18.10.1
  • M
Cross-site Scripting (XSS)

<68.0+build3-0ubuntu0.18.10.1
  • M
Cross-site Scripting (XSS)

<68.0+build3-0ubuntu0.18.10.1
  • M
CVE-2019-11730

<68.0+build3-0ubuntu0.18.10.1
  • M
Origin Validation Error

<68.0+build3-0ubuntu0.18.10.1
  • M
Exposure of Resource to Wrong Sphere

<68.0+build3-0ubuntu0.18.10.1
  • M
Improper Encoding or Escaping of Output

<68.0+build3-0ubuntu0.18.10.1
  • M
Improper Input Validation

<68.0+build3-0ubuntu0.18.10.1
  • M
Out-of-bounds Read

<68.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<68.0+build3-0ubuntu0.18.10.1
  • M
CVE-2019-11711

<68.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<68.0+build3-0ubuntu0.18.10.1
  • H
Improper Input Validation

<67.0.4+build1-0ubuntu0.18.10.1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<67.0.3+build1-0ubuntu0.18.10.1
  • L
Cross-site Scripting (XSS)

<67.0+build2-0ubuntu0.18.10.1
  • M
Access of Resource Using Incompatible Type ('Type Confusion')

<67.0+build2-0ubuntu0.18.10.1
  • M
Origin Validation Error

<67.0+build2-0ubuntu0.18.10.1
  • M
Use After Free

<67.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<67.0+build2-0ubuntu0.18.10.1
  • M
Use After Free

<67.0+build2-0ubuntu0.18.10.1
  • M
Improper Input Validation

<67.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<67.0+build2-0ubuntu0.18.10.1
  • M
Use After Free

<67.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<67.0+build2-0ubuntu0.18.10.1
  • L
CVE-2019-11699

<67.0+build2-0ubuntu0.18.10.1
  • M
Improper Input Validation

<67.0+build2-0ubuntu0.18.10.1
  • M
Improper Input Validation

<67.0+build2-0ubuntu0.18.10.1
  • M
Use After Free

<67.0+build2-0ubuntu0.18.10.1
  • M
CVE-2019-11695

<67.0+build2-0ubuntu0.18.10.1
  • M
Improper Input Validation

<67.0+build2-0ubuntu0.18.10.1
  • M
Access of Resource Using Incompatible Type ('Type Confusion')

<66.0.1+build1-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<66.0.1+build1-0ubuntu0.18.10.1
  • L
Resource Management Errors

<66.0+build3-0ubuntu0.18.10.1
  • M
Use of Uninitialized Resource

<66.0+build3-0ubuntu0.18.10.1
  • M
Origin Validation Error

<66.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<66.0+build3-0ubuntu0.18.10.1
  • L
Out-of-Bounds

<66.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<66.0+build3-0ubuntu0.18.10.1
  • L
Resource Management Errors

<66.0+build3-0ubuntu0.18.10.1
  • L
Improper Input Validation

<66.0+build3-0ubuntu0.18.10.1
  • M
Reachable Assertion

<66.0+build3-0ubuntu0.18.10.1
  • M
Information Exposure

<66.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<66.0+build3-0ubuntu0.18.10.1
  • L
Origin Validation Error

<66.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<66.0+build3-0ubuntu0.18.10.1
  • M
Use After Free

<66.0+build3-0ubuntu0.18.10.1
  • M
Use After Free

<66.0+build3-0ubuntu0.18.10.1
  • M
Improper Input Validation

<66.0+build3-0ubuntu0.18.10.1
  • M
Origin Validation Error

<66.0+build3-0ubuntu0.18.10.1
  • M
Origin Validation Error

<62.0+build2-0ubuntu1
  • M
Information Exposure

<65.0.1+build2-0ubuntu0.18.10.1
  • M
Out-of-bounds Write

<65.0.1+build2-0ubuntu0.18.10.1
  • M
Use After Free

<67.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<65.0+build2-0ubuntu0.18.10.1
  • M
Improper Authentication

<65.0+build2-0ubuntu0.18.10.1
  • M
Use After Free

<65.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<65.0+build2-0ubuntu0.18.10.1
  • M
CVE-2018-18506

<65.0+build2-0ubuntu0.18.10.1
  • M
Out-of-bounds Read

<65.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<65.0+build2-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<64.0+build3-0ubuntu0.18.10.1
  • M
CVE-2018-18497

<64.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<64.0+build3-0ubuntu0.18.10.1
  • M
Use After Free

<64.0+build3-0ubuntu0.18.10.1
  • M
Incorrect Permission Assignment for Critical Resource

<64.0+build3-0ubuntu0.18.10.1
  • L
Out-of-bounds Write

<64.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<64.0+build3-0ubuntu0.18.10.1
  • M
Origin Validation Error

<64.0+build3-0ubuntu0.18.10.1
  • M
Out-of-Bounds

<64.0+build3-0ubuntu0.18.10.1
  • M
Out-of-bounds Write

<65.0.1+build2-0ubuntu0.18.10.1
  • L
Improper Authentication

<63.0+build2-0ubuntu0.18.10.2
  • L
Improper Input Validation

<63.0+build2-0ubuntu0.18.10.2
  • M
Out-of-Bounds

<63.0+build2-0ubuntu0.18.10.2
  • L
Origin Validation Error

<63.0+build2-0ubuntu0.18.10.2
  • M
CVE-2018-12398

<63.0+build2-0ubuntu0.18.10.2
  • M
Incorrect Permission Assignment for Critical Resource

<63.0+build2-0ubuntu0.18.10.2
  • M
CVE-2018-12395

<63.0+build2-0ubuntu0.18.10.2
  • M
Information Exposure

<63.0+build2-0ubuntu0.18.10.2
  • M
Out-of-Bounds

<63.0+build2-0ubuntu0.18.10.2
  • L
CVE-2018-12403

<63.0+build2-0ubuntu0.18.10.2
  • M
Out-of-bounds Write

<63.0+build2-0ubuntu0.18.10.2
  • M
CVE-2018-12392

<63.0+build2-0ubuntu0.18.10.2
  • M
Out-of-bounds Read

<64.0+build3-0ubuntu0.18.10.1
  • M
Improper Input Validation

<62.0.3+build1-0ubuntu1
  • M
Incorrect Type Conversion or Cast

<62.0.3+build1-0ubuntu1
  • M
Out-of-Bounds

<62.0+build2-0ubuntu1
  • M
Out-of-Bounds

<62.0+build2-0ubuntu1
  • M
Out-of-Bounds

<61.0.1+build1-0ubuntu0.18.04.1
  • M
Out-of-Bounds

<61.0.1+build1-0ubuntu0.18.04.1
  • M
Out-of-Bounds

<61.0.1+build1-0ubuntu0.18.04.1
  • M
Out-of-bounds Write

<61.0.1+build1-0ubuntu0.18.04.1
  • M
Improper Input Validation

<55.0.2+build1-0ubuntu4
  • M
Information Exposure

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<60.0+build2-0ubuntu1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Improper Privilege Management

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<60.0+build2-0ubuntu1
  • M
Out-of-bounds Write

<59.0.1+build1-0ubuntu1
  • M
Out-of-bounds Read

<55.0.2+build1-0ubuntu4
  • M
Out-of-bounds Read

<56.0+build6-0ubuntu1
  • M
Improper Input Validation

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<57.0.1+build2-0ubuntu1
  • M
Information Exposure

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<54.0+build3-0ubuntu1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<54.0+build3-0ubuntu1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Origin Validation Error

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<59.0.1+build1-0ubuntu1
  • M
Out-of-Bounds

<59.0.1+build1-0ubuntu1
  • M
Out-of-Bounds

<59.0.1+build1-0ubuntu1
  • M
Use After Free

<56.0+build6-0ubuntu1
  • M
Improper Input Validation

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<57.0.1+build2-0ubuntu1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<59.0.1+build1-0ubuntu1
  • M
Cross-site Scripting (XSS)

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<56.0+build6-0ubuntu1
  • M
Out-of-Bounds

<59.0.1+build1-0ubuntu1
  • M
CVE-2017-7781

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Information Exposure

<57.0.1+build2-0ubuntu1
  • M
Arbitrary Code Injection

<55.0.2+build1-0ubuntu4
  • M
Incorrect Default Permissions

<55.0.2+build1-0ubuntu4
  • M
Arbitrary Code Injection

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<59.0.1+build1-0ubuntu1
  • M
Out-of-Bounds

<55.0.2+build1-0ubuntu4
  • M
Use After Free

<55.0.2+build1-0ubuntu4
  • M
Out-of-Bounds

<56.0+build6-0ubuntu1
  • M
Information Exposure

<59.0.1+build1-0ubuntu1
  • M
Information Exposure

<59.0.1+build1-0ubuntu1
  • M
Information Exposure

<59.0.1+build1-0ubuntu1
  • M
Improper Data Handling

<43.0.4+build3-0ubuntu1
  • M
Cryptographic Issues

<39.0+build5-0ubuntu1
  • M
Information Exposure

<12.0+build1-0ubuntu0.12.04.1