Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-1019

Опубликовано: 04 фев. 2025
Источник: nvd
CVSS3: 4.3
EPSS Низкий

Описание

The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
Версия до 135.0 (исключая)
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*
Версия от 131.0 (включая) до 135.0 (исключая)

EPSS

Процентиль: 24%
0.00077
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-1021
CWE-1021

Связанные уязвимости

ubuntu логотип

CVE-2025-1019

CVSS3: 4.3
ubuntu
5 месяцев назад

The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135.

redhat логотип

CVE-2025-1019

CVSS3: 5.4
redhat
5 месяцев назад

The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135.

debian логотип

CVE-2025-1019

CVSS3: 4.3
debian
5 месяцев назад

The z-order of the browser windows could be manipulated to hide the fu ...

github логотип

GHSA-gg39-4c5c-pfx2

CVSS3: 4.3
github
5 месяцев назад

The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135.

EPSS

Процентиль: 24%
0.00077
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-1021
CWE-1021