CNNVD-202507-2934 Information
CNNVD ID
CNNVD-202507-2934
Related CVE
- CNNVD Published: 2025-07-22
Description (Chinese)
Mozilla Firefox等都是美国Mozilla基金会的产品。Mozilla Firefox是一款开源Web浏览器。Mozilla Firefox ESR是Firefox(Web浏览器)的一个延长支持版本。Mozilla Thunderbird是一套从Mozilla Application Suite独立出来的电子邮件客户端软件。 Mozilla多款产品存在信息泄露漏洞,该漏洞源于搜索词在URL栏中持续存在。以下产品和版本受到影响:Firefox 141之前版本、Firefox ESR 140.1之前版本和Thunderbird 141之前版本和140.1之前版本。
Description (English)
Mozilla Firefox and others are products of the Mozilla Foundation in the United States. Mozilla Firefox is an open-source Web browser. Mozilla Firefox ESR is an extended support version of Firefox (Web Browser). Mozilla Thunderbird is an independent email client from Mozilla Application Suite. There is an information leak in Mozilla’s multiple products, which stems from the persistence of search terms in the URL column. The following products and versions were affected: the preFirefox 141, the preFirefox ESR 140.1, and the preThunderbird 141 and pre-140.1.
Hazard Level
Medium
Vulnerability Type
信息泄露
Affected Vendor
Mozilla
Published
2025-07-22
Last Modified
2026-02-24
References
https://www.mozilla.org/security/advisories/mfsa2025-61/ https://www.mozilla.org/security/advisories/mfsa2025-63/ https://bugzilla.mozilla.org/show_bug.cgi?id=1970997 https://www.mozilla.org/security/advisories/mfsa2025-56/ https://www.mozilla.org/security/advisories/mfsa2025-59/ https://nvd.nist.gov/vuln/detail/CVE-2025-8039
Patch
https://www.firefox.com/zh-CN/?utm_campaign=SET_DEFAULT_BROWSER
Share on: