Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-4085

Опубликовано: 29 апр. 2025
Источник: debian

Описание

An attacker with control over a content process could potentially leverage the privileged UITour actor to leak sensitive information or escalate privileges. This vulnerability affects Firefox < 138 and Thunderbird < 138.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed138.0-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2025-28/#CVE-2025-4085

Связанные уязвимости

CVSS3: 7.1
ubuntu
3 месяца назад

An attacker with control over a content process could potentially leverage the privileged UITour actor to leak sensitive information or escalate privileges. This vulnerability affects Firefox < 138 and Thunderbird < 138.

CVSS3: 6.8
redhat
3 месяца назад

An attacker with control over a content process could potentially leverage the privileged UITour actor to leak sensitive information or escalate privileges. This vulnerability affects Firefox < 138 and Thunderbird < 138.

CVSS3: 7.1
nvd
3 месяца назад

An attacker with control over a content process could potentially leverage the privileged UITour actor to leak sensitive information or escalate privileges. This vulnerability affects Firefox < 138 and Thunderbird < 138.

CVSS3: 7.1
github
3 месяца назад

An attacker with control over a content process could potentially leverage the privileged UITour actor to leak sensitive information or escalate privileges. This vulnerability affects Firefox < 138 and Thunderbird < 138.