CNNVD-202512-1559 Information
CNNVD ID
CNNVD-202512-1559
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 146之前版本、Firefox ESR 115.31之前版本和140.6之前版本存在安全漏洞,该漏洞源于DOM Notifications组件权限管理不当,可能导致权限提升。
Description (English)
Mozilla Firefox is an open-source Web browser for the Mozilla Foundation in the United States. There is a security loophole in previous versions of Mozilla Firefox 146, in previous versions of Firefox ESR 115.31 and in previous versions of 140.6, which stems from the mismanagement of the authority of the DOM notifications component, which may lead to an increase in authority.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Mozilla
Published
2025-12-09
Last Modified
2026-02-24
References
https://www.mozilla.org/security/advisories/mfsa2025-93/ https://bugzilla.mozilla.org/show_bug.cgi?id=1996555 https://www.mozilla.org/security/advisories/mfsa2025-94/ https://www.mozilla.org/security/advisories/mfsa2025-95/ https://www.mozilla.org/security/advisories/mfsa2025-96/ https://www.mozilla.org/security/advisories/mfsa2025-92/