Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-14329

Опубликовано: 09 дек. 2025
Источник: redhat
CVSS3: 6.1

Описание

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Privilege escalation in the Netmonitor component.

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10rhel10/firefox-flatpakAffected
Red Hat Enterprise Linux 10rhel10/thunderbird-flatpakAffected
Red Hat Enterprise Linux 6firefoxOut of support scope
Red Hat Enterprise Linux 6thunderbirdOut of support scope
Red Hat Enterprise Linux 7thunderbirdOut of support scope
Red Hat Enterprise Linux 10firefoxFixedRHSA-2025:2303510.12.2025
Red Hat Enterprise Linux 10thunderbirdFixedRHSA-2026:002505.01.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportthunderbirdFixedRHSA-2026:012406.01.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportfirefoxFixedRHSA-2026:012706.01.2026
Red Hat Enterprise Linux 7 Extended Lifecycle SupportfirefoxFixedRHSA-2026:000705.01.2026

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2420509firefox: thunderbird: Privilege escalation in the Netmonitor component

6.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-14329

CVSS3: 8.8
ubuntu
4 месяца назад

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

nvd логотип

CVE-2025-14329

CVSS3: 8.8
nvd
4 месяца назад

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.

debian логотип

CVE-2025-14329

CVSS3: 8.8
debian
4 месяца назад

Privilege escalation in the Netmonitor component. This vulnerability a ...

github логотип

GHSA-vxvx-cxrx-x52j

CVSS3: 8.8
github
4 месяца назад

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 146 and Firefox ESR < 140.6.

fstec логотип

BDU:2025-16358

CVSS3: 8.8
fstec
4 месяца назад

Уязвимость компонента Netmonitor браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю повысить свои привилегии

6.1 Medium

CVSS3