CNNVD-202506-3009 Information
CNNVD ID
CNNVD-202506-3009
Related CVE
- CNNVD Published: 2025-06-24
Description (Chinese)
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 140之前版本和Firefox ESR 128.12之前版本存在安全漏洞,该漏洞源于URL解析存在缺陷,可能导致安全绕过。
Description (English)
Mozilla Firefox is an open-source Web browser for the Mozilla Foundation in the United States. There was a security loophole before Mozilla Firefox 140 and before Firefox ESR 128.12, which stemmed from the URL analysis of defects that could lead to a security bypass.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mozilla
Published
2025-06-24
Last Modified
2026-02-24
References
https://www.mozilla.org/security/advisories/mfsa2025-51/ https://www.mozilla.org/security/advisories/mfsa2025-53/ https://www.mozilla.org/security/advisories/mfsa2025-54/ https://www.mozilla.org/security/advisories/mfsa2025-55/ https://bugzilla.mozilla.org/show_bug.cgi?id=1970658 https://access.redhat.com/security/cve/cve-2025-6429
Patch
https://www.mozilla.org/en-US/firefox/140.0/releasenotes/
Share on: