VulnerableCode Package Details - pkg:mozilla/Firefox@28.0.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:mozilla/Firefox@28.0.1

Essentials
History (1)

purl	pkg:mozilla/Firefox@28.0.1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-rakr-vxan-fufh	Security researcher Roee Hay reported that a hyperlink using the file: protocol on Firefox for Android could link to a local file in the Firefox profile directory. If a user selected this link on their device, the linked file would be copied to the SD card without prompting. This SD card location is world readable leading to a potential information disclosure of files in the Firefox profile through a malicious application.	CVE-2014-1515

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-01T19:55:25.437719+00:00	Mozilla Importer	Fixing	VCID-rakr-vxan-fufh	https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2014/mfsa2014-33.md	38.6.0