cvelistv5 - cve-2025-11720

CVE-2025-11720 (GCVE-0-2025-11720)

Vulnerability from cvelistv5 – Published: 2025-10-14 12:27 – Updated: 2025-10-30 16:13

Summary

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox < 144.

Severity ?

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE

CWE-451 - User Interface (UI) Misrepresentation of Critical Information

Assigner

mozilla

References

URL

Tags

	https://bugzilla.mozilla.org/show_bug.cgi?id=1979534
	https://bugzilla.mozilla.org/show_bug.cgi?id=1984370
	https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

	Vendor	Product	Version
	Mozilla	Firefox	Affected: unspecified , < 144 (custom)

Credits

Michel Le Bihan

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 8.1,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-11720",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-15T13:18:34.454167Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-451",
                "description": "CWE-451 User Interface (UI) Misrepresentation of Critical Information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-15T13:19:42.977Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThan": "144",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Michel Le Bihan"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \"site\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144."
            }
          ],
          "value": "The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \"site\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-30T16:13:59.755Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1979534"
        },
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1984370"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2025-81/"
        }
      ],
      "title": "Spoofing risk in Android custom tabs"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2025-11720",
    "datePublished": "2025-10-14T12:27:38.204Z",
    "dateReserved": "2025-10-13T19:50:22.446Z",
    "dateUpdated": "2025-10-30T16:13:59.755Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-11720\",\"sourceIdentifier\":\"security@mozilla.org\",\"published\":\"2025-10-14T13:15:38.400\",\"lastModified\":\"2025-10-15T18:10:00.430\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \\\"site\\\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":5.2},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":5.2}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-451\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"144.0\",\"matchCriteriaId\":\"DC554AD6-8F3F-4C92-85EA-C204204E9E9D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:google:android:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1979534\",\"source\":\"security@mozilla.org\",\"tags\":[\"Issue Tracking\",\"Permissions Required\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1984370\",\"source\":\"security@mozilla.org\",\"tags\":[\"Issue Tracking\",\"Permissions Required\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2025-81/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-11720\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-10-15T13:18:34.454167Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-451\", \"description\": \"CWE-451 User Interface (UI) Misrepresentation of Critical Information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-10-15T13:18:37.511Z\"}}], \"cna\": {\"title\": \"Spoofing risk in Android custom tabs\", \"credits\": [{\"lang\": \"en\", \"value\": \"Michel Le Bihan\"}], \"affected\": [{\"vendor\": \"Mozilla\", \"product\": \"Firefox\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"144\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1979534\"}, {\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1984370\"}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2025-81/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \\\"site\\\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \\\"site\\\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144.\", \"base64\": false}]}], \"providerMetadata\": {\"orgId\": \"f16b083a-5664-49f3-a51e-8d479e5ed7fe\", \"shortName\": \"mozilla\", \"dateUpdated\": \"2025-10-30T16:13:59.755Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-11720\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-30T16:13:59.755Z\", \"dateReserved\": \"2025-10-13T19:50:22.446Z\", \"assignerOrgId\": \"f16b083a-5664-49f3-a51e-8d479e5ed7fe\", \"datePublished\": \"2025-10-14T12:27:38.204Z\", \"assignerShortName\": \"mozilla\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

CERTFR-2025-AVI-0873

Vulnerability from certfr_avis - Published: 2025-10-15 - Updated: 2025-10-15

De multiples vulnérabilités ont été découvertes dans les produits Mozilla. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Mozilla	Firefox	Firefox versions antérieures à 144
Mozilla	Thunderbird	Thunderbird versions antérieures à 144
Mozilla	Firefox ESR	Firefox ESR versions antérieures à 115.29
Mozilla	Firefox ESR	Firefox ESR versions antérieures à 140.4
Mozilla	Thunderbird	Thunderbird versions antérieures à 140.4

References

Title

Publication Time

Tags

Bulletin de sécurité Mozilla mfsa2025-81	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-85	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-82	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-83	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-84	2025-10-14	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Firefox versions ant\u00e9rieures \u00e0 144",
      "product": {
        "name": "Firefox",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Thunderbird versions ant\u00e9rieures \u00e0 144",
      "product": {
        "name": "Thunderbird",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Firefox ESR versions ant\u00e9rieures \u00e0 115.29",
      "product": {
        "name": "Firefox ESR",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Firefox ESR versions ant\u00e9rieures \u00e0 140.4",
      "product": {
        "name": "Firefox ESR",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Thunderbird versions ant\u00e9rieures \u00e0 140.4",
      "product": {
        "name": "Thunderbird",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-11712",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11712"
    },
    {
      "name": "CVE-2025-11710",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11710"
    },
    {
      "name": "CVE-2025-11717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11717"
    },
    {
      "name": "CVE-2025-11714",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11714"
    },
    {
      "name": "CVE-2025-11709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11709"
    },
    {
      "name": "CVE-2025-11708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11708"
    },
    {
      "name": "CVE-2025-11720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11720"
    },
    {
      "name": "CVE-2025-11721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11721"
    },
    {
      "name": "CVE-2025-11716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11716"
    },
    {
      "name": "CVE-2025-11711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11711"
    },
    {
      "name": "CVE-2025-11718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11718"
    },
    {
      "name": "CVE-2025-11715",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11715"
    },
    {
      "name": "CVE-2025-11713",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11713"
    },
    {
      "name": "CVE-2025-11719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11719"
    }
  ],
  "initial_release_date": "2025-10-15T00:00:00",
  "last_revision_date": "2025-10-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0873",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-10-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Mozilla. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Mozilla",
  "vendor_advisories": [
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-81",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-85",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-85/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-82",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-82/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-83",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-83/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-84",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-84/"
    }
  ]
}

CERTFR-2025-AVI-0873

Vulnerability from certfr_avis - Published: 2025-10-15 - Updated: 2025-10-15

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Mozilla	Firefox	Firefox versions antérieures à 144
Mozilla	Thunderbird	Thunderbird versions antérieures à 144
Mozilla	Firefox ESR	Firefox ESR versions antérieures à 115.29
Mozilla	Firefox ESR	Firefox ESR versions antérieures à 140.4
Mozilla	Thunderbird	Thunderbird versions antérieures à 140.4

References

Title

Publication Time

Tags

Bulletin de sécurité Mozilla mfsa2025-81	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-85	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-82	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-83	2025-10-14	vendor-advisory
Bulletin de sécurité Mozilla mfsa2025-84	2025-10-14	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Firefox versions ant\u00e9rieures \u00e0 144",
      "product": {
        "name": "Firefox",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Thunderbird versions ant\u00e9rieures \u00e0 144",
      "product": {
        "name": "Thunderbird",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Firefox ESR versions ant\u00e9rieures \u00e0 115.29",
      "product": {
        "name": "Firefox ESR",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Firefox ESR versions ant\u00e9rieures \u00e0 140.4",
      "product": {
        "name": "Firefox ESR",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    },
    {
      "description": "Thunderbird versions ant\u00e9rieures \u00e0 140.4",
      "product": {
        "name": "Thunderbird",
        "vendor": {
          "name": "Mozilla",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-11712",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11712"
    },
    {
      "name": "CVE-2025-11710",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11710"
    },
    {
      "name": "CVE-2025-11717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11717"
    },
    {
      "name": "CVE-2025-11714",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11714"
    },
    {
      "name": "CVE-2025-11709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11709"
    },
    {
      "name": "CVE-2025-11708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11708"
    },
    {
      "name": "CVE-2025-11720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11720"
    },
    {
      "name": "CVE-2025-11721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11721"
    },
    {
      "name": "CVE-2025-11716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11716"
    },
    {
      "name": "CVE-2025-11711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11711"
    },
    {
      "name": "CVE-2025-11718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11718"
    },
    {
      "name": "CVE-2025-11715",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11715"
    },
    {
      "name": "CVE-2025-11713",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11713"
    },
    {
      "name": "CVE-2025-11719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-11719"
    }
  ],
  "initial_release_date": "2025-10-15T00:00:00",
  "last_revision_date": "2025-10-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0873",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-10-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Mozilla. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Mozilla",
  "vendor_advisories": [
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-81",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-85",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-85/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-82",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-82/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-83",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-83/"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2025-84",
      "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-84/"
    }
  ]
}

GHSA-WJV8-8VF9-MRV8

Vulnerability from github – Published: 2025-10-14 15:31 – Updated: 2025-10-15 15:30

Details

Severity ?

8.1 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-11720"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-451"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-10-14T13:15:38Z",
    "severity": "HIGH"
  },
  "details": "The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \"site\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144.",
  "id": "GHSA-wjv8-8vf9-mrv8",
  "modified": "2025-10-15T15:30:27Z",
  "published": "2025-10-14T15:31:26Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11720"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1979534"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1984370"
    },
    {
      "type": "WEB",
      "url": "https://www.mozilla.org/security/advisories/mfsa2025-81"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2025-11720

Vulnerability from fkie_nvd - Published: 2025-10-14 13:15 - Updated: 2025-10-15 18:10

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
8.1 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Summary

References

URL	Tags
security@mozilla.org	https://bugzilla.mozilla.org/show_bug.cgi?id=1979534	Issue Tracking, Permissions Required
security@mozilla.org	https://bugzilla.mozilla.org/show_bug.cgi?id=1984370	Issue Tracking, Permissions Required
security@mozilla.org	https://www.mozilla.org/security/advisories/mfsa2025-81/	Vendor Advisory

Impacted products

	Vendor	Product	Version
	mozilla	firefox	*
	google	android	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC554AD6-8F3F-4C92-85EA-C204204E9E9D",
              "versionEndExcluding": "144.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Firefox and Firefox Focus UI for the Android custom tab feature only showed the \"site\" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This vulnerability affects Firefox \u003c 144."
    }
  ],
  "id": "CVE-2025-11720",
  "lastModified": "2025-10-15T18:10:00.430",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.2,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.2,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-10-14T13:15:38.400",
  "references": [
    {
      "source": "security@mozilla.org",
      "tags": [
        "Issue Tracking",
        "Permissions Required"
      ],
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1979534"
    },
    {
      "source": "security@mozilla.org",
      "tags": [
        "Issue Tracking",
        "Permissions Required"
      ],
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1984370"
    },
    {
      "source": "security@mozilla.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.mozilla.org/security/advisories/mfsa2025-81/"
    }
  ],
  "sourceIdentifier": "security@mozilla.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-451"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

CNVD-2025-24624

Vulnerability from cnvd - Published: 2025-10-23

Title

Mozilla Firefox欺骗漏洞（CNVD-2025-24624）

Description

Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox存在欺骗漏洞，该漏洞是由于自定义选项卡中的错误引起的。攻击者可利用该漏洞进行欺骗攻击。

Severity

高

Patch Name

Mozilla Firefox欺骗漏洞（CNVD-2025-24624）的补丁

Patch Description

Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox存在欺骗漏洞，该漏洞是由于自定义选项卡中的错误引起的。攻击者可利用该漏洞进行欺骗攻击。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已提供漏洞修复方案，请关注厂商主页更新： https://bugzilla.mozilla.org/show_bug.cgi?id=1979534

Reference

https://bugzilla.mozilla.org/show_bug.cgi?id=1979534

Impacted products

Name
Mozilla Firefox <144

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-11720",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-11720"
    }
  },
  "description": "Mozilla Firefox\u662f\u7f8e\u56fdMozilla\u57fa\u91d1\u4f1a\u7684\u4e00\u6b3e\u5f00\u6e90Web\u6d4f\u89c8\u5668\u3002\n\nMozilla Firefox\u5b58\u5728\u6b3a\u9a97\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u81ea\u5b9a\u4e49\u9009\u9879\u5361\u4e2d\u7684\u9519\u8bef\u5f15\u8d77\u7684\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8fdb\u884c\u6b3a\u9a97\u653b\u51fb\u3002",
  "formalWay": "\u5382\u5546\u5df2\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttps://bugzilla.mozilla.org/show_bug.cgi?id=1979534",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-24624",
  "openTime": "2025-10-23",
  "patchDescription": "Mozilla Firefox\u662f\u7f8e\u56fdMozilla\u57fa\u91d1\u4f1a\u7684\u4e00\u6b3e\u5f00\u6e90Web\u6d4f\u89c8\u5668\u3002\r\n\r\nMozilla Firefox\u5b58\u5728\u6b3a\u9a97\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u81ea\u5b9a\u4e49\u9009\u9879\u5361\u4e2d\u7684\u9519\u8bef\u5f15\u8d77\u7684\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8fdb\u884c\u6b3a\u9a97\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Mozilla Firefox\u6b3a\u9a97\u6f0f\u6d1e\uff08CNVD-2025-24624\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Mozilla Firefox \u003c144"
  },
  "referenceLink": "https://bugzilla.mozilla.org/show_bug.cgi?id=1979534",
  "serverity": "\u9ad8",
  "submitTime": "2025-10-17",
  "title": "Mozilla Firefox\u6b3a\u9a97\u6f0f\u6d1e\uff08CNVD-2025-24624\uff09"
}

NCSC-2025-0325

Vulnerability from csaf_ncscnl - Published: 2025-10-20 12:59 - Updated: 2025-10-20 12:59

Summary

Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

Mozilla heeft kwetsbaarheden verholpen in Firefox en Thunderbird (Specifiek voor versies onder 144).

Interpretaties

De kwetsbaarheden omvatten verschillende problemen, waaronder een use-after-free probleem, geheugenveiligheidsfouten en de mogelijkheid voor een kwaadwillende om gevoelige gegevens te benaderen of willekeurige code uit te voeren. Deze kwetsbaarheden kunnen worden geëxploiteerd via gemanipuleerde webprocessen, onveilige IPC-berichten en andere methoden die de integriteit van de applicaties in gevaar brengen. De risico's zijn significant, vooral voor gebruikers van Windows en Android, waar specifieke kwetsbaarheden zijn vastgesteld die kunnen leiden tot ongeautoriseerde toegang en systeemcompromittering.

Oplossingen

Mozilla heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

CWE-116

Improper Encoding or Escaping of Output

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-125

Out-of-bounds Read

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-275

CWE-284

Improper Access Control

CWE-404

Improper Resource Shutdown or Release

CWE-416

Use After Free

CWE-436

Interpretation Conflict

CWE-451

User Interface (UI) Misrepresentation of Critical Information

CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere

CWE-591

Sensitive Data Storage in Improperly Locked Memory

CWE-787

Out-of-bounds Write

CWE-1021

Improper Restriction of Rendered UI Layers or Frames

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Mozilla heeft kwetsbaarheden verholpen in Firefox en Thunderbird (Specifiek voor versies onder 144).",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheden omvatten verschillende problemen, waaronder een use-after-free probleem, geheugenveiligheidsfouten en de mogelijkheid voor een kwaadwillende om gevoelige gegevens te benaderen of willekeurige code uit te voeren. Deze kwetsbaarheden kunnen worden ge\u00ebxploiteerd via gemanipuleerde webprocessen, onveilige IPC-berichten en andere methoden die de integriteit van de applicaties in gevaar brengen. De risico\u0027s zijn significant, vooral voor gebruikers van Windows en Android, waar specifieke kwetsbaarheden zijn vastgesteld die kunnen leiden tot ongeautoriseerde toegang en systeemcompromittering.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Mozilla heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
        "title": "CWE-79"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
        "title": "CWE-88"
      },
      {
        "category": "general",
        "text": "Improper Encoding or Escaping of Output",
        "title": "CWE-116"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
        "title": "CWE-119"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "CWE-275",
        "title": "CWE-275"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "Interpretation Conflict",
        "title": "CWE-436"
      },
      {
        "category": "general",
        "text": "User Interface (UI) Misrepresentation of Critical Information",
        "title": "CWE-451"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive System Information to an Unauthorized Control Sphere",
        "title": "CWE-497"
      },
      {
        "category": "general",
        "text": "Sensitive Data Storage in Improperly Locked Memory",
        "title": "CWE-591"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Write",
        "title": "CWE-787"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Rendered UI Layers or Frames",
        "title": "CWE-1021"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-82/"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-83/"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-84/"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-85/"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird",
    "tracking": {
      "current_release_date": "2025-10-20T12:59:06.729067Z",
      "generator": {
        "date": "2025-08-04T16:30:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.3"
        }
      },
      "id": "NCSC-2025-0325",
      "initial_release_date": "2025-10-20T12:59:06.729067Z",
      "revision_history": [
        {
          "date": "2025-10-20T12:59:06.729067Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-1"
                }
              }
            ],
            "category": "product_name",
            "name": "Firefox"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-2"
                }
              }
            ],
            "category": "product_name",
            "name": "Firefox ESR"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-3"
                }
              }
            ],
            "category": "product_name",
            "name": "Thunderbird"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-4"
                }
              }
            ],
            "category": "product_name",
            "name": "Thunderbird ESR"
          }
        ],
        "category": "vendor",
        "name": "Mozilla"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-11708",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A use-after-free vulnerability in MediaTrackGraphImpl::GetInstance() affects Firefox and Thunderbird versions below 144, with specific ESR versions also impacted, as assessed by Red Hat Product Security.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11708 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11708.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11708"
    },
    {
      "cve": "CVE-2025-11709",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "description",
          "text": "A vulnerability in specific versions of Firefox and Thunderbird allows exploitation through manipulated WebGL textures, resulting in out of bounds reads and writes in a more privileged process.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11709 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11709.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11709"
    },
    {
      "cve": "CVE-2025-11710",
      "cwe": {
        "id": "CWE-497",
        "name": "Exposure of Sensitive System Information to an Unauthorized Control Sphere"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive System Information to an Unauthorized Control Sphere",
          "title": "CWE-497"
        },
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in Firefox and Thunderbird prior to specified updates allows a compromised web process to access sensitive memory blocks of the privileged browser process via malicious IPC messages.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11710 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11710.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11710"
    },
    {
      "cve": "CVE-2025-11711",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "other",
          "text": "Sensitive Data Storage in Improperly Locked Memory",
          "title": "CWE-591"
        },
        {
          "category": "description",
          "text": "A vulnerability affecting specific versions of Firefox and Thunderbird allows modification of non-writeable JavaScript Object properties, as assessed by Red Hat Product Security based on a Mozilla Foundation Security Advisory.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11711 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11711.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11711"
    },
    {
      "cve": "CVE-2025-11712",
      "cwe": {
        "id": "CWE-436",
        "name": "Interpretation Conflict"
      },
      "notes": [
        {
          "category": "other",
          "text": "Interpretation Conflict",
          "title": "CWE-436"
        },
        {
          "category": "other",
          "text": "Improper Encoding or Escaping of Output",
          "title": "CWE-116"
        },
        {
          "category": "description",
          "text": "A vulnerability in Firefox and Thunderbird allows exploitation of the OBJECT tag\u0027s type attribute, potentially leading to XSS attacks on sites serving files without a content-type header.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11712 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11712.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11712"
    },
    {
      "cve": "CVE-2025-11713",
      "cwe": {
        "id": "CWE-88",
        "name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
          "title": "CWE-88"
        },
        {
          "category": "other",
          "text": "Improper Encoding or Escaping of Output",
          "title": "CWE-116"
        },
        {
          "category": "description",
          "text": "A vulnerability in the \u0027Copy as cURL\u0027 feature affects Windows users of Firefox and Thunderbird, allowing unexpected code execution, while other operating systems remain unaffected.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11713 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11713.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11713"
    },
    {
      "cve": "CVE-2025-11714",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "description",
          "text": "Memory safety vulnerabilities in various versions of Firefox and Thunderbird could be exploited to execute arbitrary code, with severity ratings provided by Red Hat based on Mozilla\u0027s advisory.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11714 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11714.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11714"
    },
    {
      "cve": "CVE-2025-11715",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "description",
          "text": "Memory safety vulnerabilities in Firefox and Thunderbird versions 140.3 and 143 could allow arbitrary code execution, affecting earlier versions and rated by Red Hat based on Mozilla\u0027s advisory.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11715 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11715.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11715"
    },
    {
      "cve": "CVE-2025-11716",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "A vulnerability in Firefox and Thunderbird versions prior to 144 allows links in a sandboxed iframe to open external applications on Android without the necessary \u0027allow-\u0027 permission.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11716 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11716.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11716"
    },
    {
      "cve": "CVE-2025-11717",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "Firefox versions prior to 144 exhibit a black screen in the app switcher instead of displaying the password edit screen when the last used screen was password-related on Android devices.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11717 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11717.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11717"
    },
    {
      "cve": "CVE-2025-11718",
      "cwe": {
        "id": "CWE-451",
        "name": "User Interface (UI) Misrepresentation of Critical Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "User Interface (UI) Misrepresentation of Critical Information",
          "title": "CWE-451"
        },
        {
          "category": "description",
          "text": "A vulnerability in Firefox versions prior to 144 on Android allows malicious pages to create a deceptive fake address bar by hiding the real one during scrolling, potentially misleading users.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11718 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11718.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11718"
    },
    {
      "cve": "CVE-2025-11719",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "Firefox and Thunderbird versions prior to 144 are vulnerable to crashes on Windows due to a use-after-free memory corruption issue in the native messaging API for web extensions, identified from version 143.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11719 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11719.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11719"
    },
    {
      "cve": "CVE-2025-11720",
      "cwe": {
        "id": "CWE-451",
        "name": "User Interface (UI) Misrepresentation of Critical Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "User Interface (UI) Misrepresentation of Critical Information",
          "title": "CWE-451"
        },
        {
          "category": "description",
          "text": "The Firefox and Firefox Focus UI for Android custom tabs displayed only the loaded site instead of the full hostname, misleading users about content sources from subdomains in versions prior to 144.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11720 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11720.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11720"
    },
    {
      "cve": "CVE-2025-11721",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "description",
          "text": "A memory safety vulnerability in Firefox 143 and Thunderbird 143 could lead to arbitrary code execution due to memory corruption, affecting versions prior to 144.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-11721 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-11721.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4"
          ]
        }
      ],
      "title": "CVE-2025-11721"
    }
  ]
}

WID-SEC-W-2025-2275

Vulnerability from csaf_certbund - Published: 2025-10-14 22:00 - Updated: 2025-10-29 23:00

Summary

Mozilla Firefox: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Firefox ist ein Open Source Web Browser. ESR ist die Variante mit verlängertem Support. Thunderbird ist ein Open Source E-Mail Client.

Angriff

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Mozilla Firefox, Mozilla Firefox ESR und Mozilla Thunderbird ausnutzen, um Code ausführen, privilegierte Informationen auslesen, Sicherheitsmechanismen umgehen oder Benutzer durch UI-Manipulation täuschen.

Betroffene Betriebssysteme

- Linux - MacOS X - Sonstiges - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Firefox ist ein Open Source Web Browser.\r\nESR ist die Variante mit verl\u00e4ngertem Support.\r\nThunderbird ist ein Open Source E-Mail Client.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Mozilla Firefox, Mozilla Firefox ESR und Mozilla Thunderbird ausnutzen, um Code ausf\u00fchren, privilegierte Informationen auslesen, Sicherheitsmechanismen umgehen oder Benutzer durch UI-Manipulation t\u00e4uschen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Sonstiges\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2275 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2275.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2275 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2275"
      },
      {
        "category": "external",
        "summary": "Mozilla Foundation Security Advisory MFSA 2025-81 vom 2025-10-14",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/"
      },
      {
        "category": "external",
        "summary": "Mozilla Foundation Security Advisory MFSA 2025-82 vom 2025-10-14",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-82/"
      },
      {
        "category": "external",
        "summary": "Mozilla Foundation Security Advisory MFSA 2025-83 vom 2025-10-14",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-83/"
      },
      {
        "category": "external",
        "summary": "Mozilla Foundation Security Advisory MFSA 2025-84 vom 2025-10-14",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-84/"
      },
      {
        "category": "external",
        "summary": "Mozilla Foundation Security Advisory MFSA 2025-85 vom 2025-10-14",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2025-85/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18154 vom 2025-10-15",
        "url": "https://access.redhat.com/errata/RHSA-2025:18154"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:15632-1 vom 2025-10-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YLAFWFU53PPDCHGEHGLIZW6O6NVEBIQ6/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6025 vom 2025-10-16",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00191.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18155 vom 2025-10-15",
        "url": "https://access.redhat.com/errata/RHSA-2025:18155"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18155 vom 2025-10-17",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18155.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18154 vom 2025-10-16",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18154.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4335 vom 2025-10-17",
        "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00015.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:15645-1 vom 2025-10-19",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C67TI37ZZS7VNZLONSPXE26OFZQKNBVW/"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:15646-1 vom 2025-10-19",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Y6MZFUJNVZLQGSZHANPL4VAJLAZLOPFS/"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:18155 vom 2025-10-18",
        "url": "https://errata.build.resf.org/RLSA-2025:18155"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:18154 vom 2025-10-18",
        "url": "https://errata.build.resf.org/RLSA-2025:18154"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory",
        "url": "https://access.redhat.com/errata/RHSA-2025:18285"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18285 vom 2025-10-20",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18285.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18320 vom 2025-10-20",
        "url": "https://access.redhat.com/errata/RHSA-2025:18320"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18321 vom 2025-10-21",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18321.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18320 vom 2025-10-21",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18320.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18321 vom 2025-10-20",
        "url": "https://access.redhat.com/errata/RHSA-2025:18321"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18983 vom 2025-10-23",
        "url": "https://access.redhat.com/errata/RHSA-2025:18983"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:18983 vom 2025-10-23",
        "url": "https://errata.build.resf.org/RLSA-2025:18983"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18983 vom 2025-10-23",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18983.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:18320 vom 2025-10-26",
        "url": "https://errata.build.resf.org/RLSA-2025:18320"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4351 vom 2025-10-27",
        "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00031.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6040 vom 2025-10-26",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00206.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3775-1 vom 2025-10-24",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YHCGEPZ4VTG4E6CWELLUQHQBXKMCZLVQ/"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:18321 vom 2025-10-28",
        "url": "https://errata.build.resf.org/RLSA-2025:18321"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3808-1 vom 2025-10-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023036.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2025-3052 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-3052.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2FIREFOX-2025-044 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2FIREFOX-2025-044.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19278 vom 2025-10-30",
        "url": "https://access.redhat.com/errata/RHSA-2025:19278"
      }
    ],
    "source_lang": "en-US",
    "title": "Mozilla Firefox: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-10-29T23:00:00.000+00:00",
      "generator": {
        "date": "2025-10-30T08:08:33.538+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-2275",
      "initial_release_date": "2025-10-14T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-10-14T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-10-15T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat, openSUSE und Debian aufgenommen"
        },
        {
          "date": "2025-10-16T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-19T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von openSUSE, Rocky Enterprise Software Foundation und Red Hat aufgenommen"
        },
        {
          "date": "2025-10-20T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
        },
        {
          "date": "2025-10-22T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat und Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2025-10-23T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-26T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation, Debian und SUSE aufgenommen"
        },
        {
          "date": "2025-10-27T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation, SUSE und Amazon aufgenommen"
        },
        {
          "date": "2025-10-29T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "10"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c144",
                "product": {
                  "name": "Mozilla Firefox \u003c144",
                  "product_id": "T047616"
                }
              },
              {
                "category": "product_version",
                "name": "144",
                "product": {
                  "name": "Mozilla Firefox 144",
                  "product_id": "T047616-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:firefox:144"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Firefox"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c115.29",
                "product": {
                  "name": "Mozilla Firefox ESR \u003c115.29",
                  "product_id": "T047617"
                }
              },
              {
                "category": "product_version",
                "name": "115.29",
                "product": {
                  "name": "Mozilla Firefox ESR 115.29",
                  "product_id": "T047617-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:firefox_esr:115.29"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c140.4",
                "product": {
                  "name": "Mozilla Firefox ESR \u003c140.4",
                  "product_id": "T047618"
                }
              },
              {
                "category": "product_version",
                "name": "140.4",
                "product": {
                  "name": "Mozilla Firefox ESR 140.4",
                  "product_id": "T047618-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:firefox_esr:140.4"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Firefox ESR"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c140.4",
                "product": {
                  "name": "Mozilla Thunderbird \u003c140.4",
                  "product_id": "T047619"
                }
              },
              {
                "category": "product_version",
                "name": "140.4",
                "product": {
                  "name": "Mozilla Thunderbird 140.4",
                  "product_id": "T047619-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:thunderbird:140.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c144",
                "product": {
                  "name": "Mozilla Thunderbird \u003c144",
                  "product_id": "T047620"
                }
              },
              {
                "category": "product_version",
                "name": "144",
                "product": {
                  "name": "Mozilla Thunderbird 144",
                  "product_id": "T047620-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:thunderbird:144"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Thunderbird"
          }
        ],
        "category": "vendor",
        "name": "Mozilla"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "T032642",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:8"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-11708",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11708"
    },
    {
      "cve": "CVE-2025-11709",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11709"
    },
    {
      "cve": "CVE-2025-11710",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11710"
    },
    {
      "cve": "CVE-2025-11711",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11711"
    },
    {
      "cve": "CVE-2025-11712",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11712"
    },
    {
      "cve": "CVE-2025-11713",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11713"
    },
    {
      "cve": "CVE-2025-11714",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11714"
    },
    {
      "cve": "CVE-2025-11715",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11715"
    },
    {
      "cve": "CVE-2025-11716",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11716"
    },
    {
      "cve": "CVE-2025-11717",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11717"
    },
    {
      "cve": "CVE-2025-11718",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11718"
    },
    {
      "cve": "CVE-2025-11719",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11719"
    },
    {
      "cve": "CVE-2025-11720",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11720"
    },
    {
      "cve": "CVE-2025-11721",
      "product_status": {
        "known_affected": [
          "T032642",
          "67646",
          "T004914",
          "T032255",
          "2951",
          "T002207",
          "T047618",
          "T047619",
          "T047616",
          "T047617",
          "T027843",
          "398363",
          "T047620"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-11721"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-11720 (GCVE-0-2025-11720)

CERTFR-2025-AVI-0873

Solutions

CERTFR-2025-AVI-0873

Solutions

GHSA-WJV8-8VF9-MRV8

FKIE_CVE-2025-11720

CNVD-2025-24624

NCSC-2025-0325

WID-SEC-W-2025-2275

Tags

Sightings

Nomenclature