← volver
CVE-2025-14331

Same-origin policy bypass in the Request Handling component

CVSS 6.5 MEDIUMEPSS 0.2%CWE-346
Same-origin policy bypass in the Request Handling component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Productos afectados
Mozilla · FirefoxMozilla · Thunderbird

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bugzilla.mozilla.org/show_bug.cgi?id=2000218https://www.mozilla.org/security/advisories/mfsa2025-92/https://www.mozilla.org/security/advisories/mfsa2025-93/https://www.mozilla.org/security/advisories/mfsa2025-94/https://www.mozilla.org/security/advisories/mfsa2025-95/https://www.mozilla.org/security/advisories/mfsa2025-96/