CNNVD-202506-3073 Information

CNNVD ID

CNNVD-202506-3073

Related CVE

CVE-2025-6427

• CNNVD Published: 2025-06-24

Description (Chinese)

Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 140之前版本存在安全漏洞，该漏洞源于connect-src指令可被绕过，可能导致隐藏网络连接。

Description (English)

Mozilla Firefox is an open-source Web browser for the Mozilla Foundation in the United States. The previous version of Mozilla Firefox 140 had a security loophole, which stemmed from the fact-src command that could be bypassed and could lead to hidden network connections.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mozilla

Published

2025-06-24

Last Modified

2026-02-24

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1966927 https://www.mozilla.org/security/advisories/mfsa2025-51/ https://www.mozilla.org/security/advisories/mfsa2025-54/

Patch

https://www.mozilla.org/en-US/firefox/140.0/releasenotes/