VulnerableCode Package Details - pkg:deb/debian/firefox@140.0-1?distro=sid

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4hcr-7re3-rkhx	An attacker was able to bypass the connect-src directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools.	CVE-2025-6427
VCID-82f1-zb9f-qbg8	If a user saved a response from the Network tab in Devtools using the Save As context menu option, that file may not have been saved with the .download file extension. This could have led to the user inadvertently running a malicious executable.	CVE-2025-6435
VCID-b8xy-bqk8-dyf5	Memory safety bugs present in Firefox 139 and Thunderbird 139. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.	CVE-2025-6436
VCID-ewxs-dh9a-mugn	When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding.	CVE-2025-6432
VCID-j6w1-yhc3-uqfw	An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser, and persisted between containers and normal/private browsing mode, but not profiles.	CVE-2025-6425
VCID-mrb2-hz9y-4ufp	When a file download is specified via the Content-Disposition header, that directive would be ignored if the file was included via a <embed> or <object> tag, potentially making a website vulnerable to a cross-site scripting attack.	CVE-2025-6430
VCID-r29z-4m4j-8kft	A use-after-free in FontFaceSet resulted in a potentially exploitable crash.	CVE-2025-6424
VCID-s89g-7f5f-5qd2	Thunderbird could have incorrectly parsed a URL and rewritten it to the youtube.com domain when parsing the URL specified in an embed tag. This could have bypassed website security checks that restricted which domains users were allowed to embed.	CVE-2025-6429
VCID-t1h3-cabw-cyc2	The exception page for the HTTPS-Only feature, displayed when a website is opened via HTTP, lacked an anti-clickjacking delay, potentially allowing an attacker to trick a user into granting an exception and loading a webpage over HTTP.	CVE-2025-6434
VCID-zv75-mvuu-fka9	If a user visited a webpage with an invalid TLS certificate, and granted an exception, the webpage was able to provide a WebAuthn challenge that the user would be prompted to complete. This is in violation of the WebAuthN spec which requires "a secure transport established without errors".	CVE-2025-6433

Vulnerability

Summary

Aliases

VCID-4hcr-7re3-rkhx

An attacker was able to bypass the connect-src directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools.

CVE-2025-6427

VCID-82f1-zb9f-qbg8

If a user saved a response from the Network tab in Devtools using the Save As context menu option, that file may not have been saved with the .download file extension. This could have led to the user inadvertently running a malicious executable.

CVE-2025-6435

VCID-b8xy-bqk8-dyf5

Memory safety bugs present in Firefox 139 and Thunderbird 139. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

CVE-2025-6436

VCID-ewxs-dh9a-mugn

When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding.

CVE-2025-6432

VCID-j6w1-yhc3-uqfw

An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser, and persisted between containers and normal/private browsing mode, but not profiles.

CVE-2025-6425

VCID-mrb2-hz9y-4ufp

When a file download is specified via the Content-Disposition header, that directive would be ignored if the file was included via a <embed> or <object> tag, potentially making a website vulnerable to a cross-site scripting attack.

CVE-2025-6430

VCID-r29z-4m4j-8kft

A use-after-free in FontFaceSet resulted in a potentially exploitable crash.

CVE-2025-6424

VCID-s89g-7f5f-5qd2

Thunderbird could have incorrectly parsed a URL and rewritten it to the youtube.com domain when parsing the URL specified in an embed tag. This could have bypassed website security checks that restricted which domains users were allowed to embed.

CVE-2025-6429

VCID-t1h3-cabw-cyc2

The exception page for the HTTPS-Only feature, displayed when a website is opened via HTTP, lacked an anti-clickjacking delay, potentially allowing an attacker to trick a user into granting an exception and loading a webpage over HTTP.

CVE-2025-6434

VCID-zv75-mvuu-fka9

If a user visited a webpage with an invalid TLS certificate, and granted an exception, the webpage was able to provide a WebAuthn challenge that the user would be prompted to complete. This is in violation of the WebAuthN spec which requires "a secure transport established without errors".

CVE-2025-6433

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:18:50.060485+00:00	Debian Importer	Fixing	VCID-zv75-mvuu-fka9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:04:01.627137+00:00	Debian Importer	Fixing	VCID-82f1-zb9f-qbg8	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:49:20.975576+00:00	Debian Importer	Fixing	VCID-4hcr-7re3-rkhx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:34:17.690851+00:00	Debian Importer	Fixing	VCID-s89g-7f5f-5qd2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:49:44.985499+00:00	Debian Importer	Fixing	VCID-b8xy-bqk8-dyf5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:29:16.185517+00:00	Debian Importer	Fixing	VCID-mrb2-hz9y-4ufp	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:08:16.131421+00:00	Debian Importer	Fixing	VCID-t1h3-cabw-cyc2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:49:29.374108+00:00	Debian Importer	Fixing	VCID-r29z-4m4j-8kft	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:44:15.675082+00:00	Debian Importer	Fixing	VCID-j6w1-yhc3-uqfw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:41:56.206526+00:00	Debian Importer	Fixing	VCID-ewxs-dh9a-mugn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:59:16.157692+00:00	Debian Importer	Fixing	VCID-4hcr-7re3-rkhx	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:25:20.976783+00:00	Debian Importer	Fixing	VCID-zv75-mvuu-fka9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:30:53.225800+00:00	Debian Importer	Fixing	VCID-82f1-zb9f-qbg8	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:18:43.702994+00:00	Debian Importer	Fixing	VCID-r29z-4m4j-8kft	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:08:25.059806+00:00	Debian Importer	Fixing	VCID-s89g-7f5f-5qd2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:34:06.333106+00:00	Debian Importer	Fixing	VCID-b8xy-bqk8-dyf5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:19:37.541167+00:00	Debian Importer	Fixing	VCID-mrb2-hz9y-4ufp	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:07:09.953668+00:00	Debian Importer	Fixing	VCID-t1h3-cabw-cyc2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:52:12.357241+00:00	Debian Importer	Fixing	VCID-j6w1-yhc3-uqfw	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:50:44.350453+00:00	Debian Importer	Fixing	VCID-ewxs-dh9a-mugn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-02T17:17:13.789105+00:00	Debian Importer	Fixing	VCID-4hcr-7re3-rkhx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:16:28.935291+00:00	Debian Importer	Fixing	VCID-82f1-zb9f-qbg8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:14:26.416902+00:00	Debian Importer	Fixing	VCID-zv75-mvuu-fka9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:14:11.829523+00:00	Debian Importer	Fixing	VCID-b8xy-bqk8-dyf5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:50.279504+00:00	Debian Importer	Fixing	VCID-ewxs-dh9a-mugn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:00.065065+00:00	Debian Importer	Fixing	VCID-r29z-4m4j-8kft	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:09.523183+00:00	Debian Importer	Fixing	VCID-s89g-7f5f-5qd2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:08:08.107309+00:00	Debian Importer	Fixing	VCID-j6w1-yhc3-uqfw	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:05:00.774622+00:00	Debian Importer	Fixing	VCID-mrb2-hz9y-4ufp	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:03:57.011878+00:00	Debian Importer	Fixing	VCID-t1h3-cabw-cyc2	https://security-tracker.debian.org/tracker/data/json	38.1.0