Уязвимость CVE-2025-6432

Пакет	Статус	Версия исправления	Релиз	Тип
firefox	fixed	140.0-1		package

CVE-2025-6432

CVSS3: 8.6

ubuntu

4 месяца назад

When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVE-2025-6432

CVSS3: 3.4

redhat

4 месяца назад

When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVE-2025-6432

CVSS3: 8.6

nvd

4 месяца назад

When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding. This vulnerability affects Firefox < 140 and Thunderbird < 140.

GHSA-43h2-r954-f6w6

CVSS3: 8.6

github

4 месяца назад

When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding. This vulnerability affects Firefox < 140.

BDU:2025-08992

CVSS3: 8.6

fstec

4 месяца назад

Уязвимость функции Multi-Account Container браузера Mozilla Firefox, позволяющая нарушителю обойти существующие ограничения безопасности прокси-сервера SOCKS и раскрыть защищаемую информацию

exploitDog

CVE-2025-6432

Описание

Пакеты

Примечания

Связанные уязвимости