Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-14327

Опубликовано: 09 дек. 2025
Источник: redhat
CVSS3: 7.1

Описание

Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146, Thunderbird < 146, Firefox ESR < 140.7, and Thunderbird < 140.7.

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Spoofing issue in the Downloads Panel component

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10rhel10/firefox-flatpakAffected
Red Hat Enterprise Linux 10rhel10/thunderbird-flatpakAffected
Red Hat Enterprise Linux 6firefoxOut of support scope
Red Hat Enterprise Linux 6thunderbirdOut of support scope
Red Hat Enterprise Linux 7thunderbirdOut of support scope
Red Hat Enterprise Linux 10firefoxFixedRHSA-2026:227109.02.2026
Red Hat Enterprise Linux 10thunderbirdFixedRHSA-2026:228609.02.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportfirefoxFixedRHSA-2026:227109.02.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportthunderbirdFixedRHSA-2026:228609.02.2026
Red Hat Enterprise Linux 7 Extended Lifecycle SupportfirefoxFixedRHSA-2026:223109.02.2026

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2420507firefox: Spoofing issue in the Downloads Panel component

7.1 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-14327

CVSS3: 7.5
ubuntu
4 месяца назад

Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146, Thunderbird < 146, Firefox ESR < 140.7, and Thunderbird < 140.7.

nvd логотип

CVE-2025-14327

CVSS3: 7.5
nvd
4 месяца назад

Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146, Thunderbird < 146, Firefox ESR < 140.7, and Thunderbird < 140.7.

debian логотип

CVE-2025-14327

CVSS3: 7.5
debian
4 месяца назад

Spoofing issue in the Downloads Panel component. This vulnerability af ...

github логотип

GHSA-wqgj-c38v-hpmm

CVSS3: 7.5
github
4 месяца назад

Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146.

fstec логотип

BDU:2025-16356

CVSS3: 7.5
fstec
4 месяца назад

Уязвимость компонента Downloads Panel браузера Mozilla Firefox и почтового клиента Thunderbird, позволяющая нарушителю проводить спуфинг-атаки

7.1 High

CVSS3