Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-1014

Опубликовано: 04 фев. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 8.8

Описание

Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.

РелизСтатусПримечание
devel

not-affected

code not present
esm-infra/focal

DNE

focal

released

135.0+build2-0ubuntu0.20.04.1
jammy

not-affected

code not present
noble

not-affected

code not present
oracular

not-affected

code not present
plucky

not-affected

code not present
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/noble

ignored

esm-infra/focal

DNE

focal

DNE

jammy

ignored

noble

ignored

oracular

DNE

plucky

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

ignored

esm-infra/focal

DNE

focal

DNE

jammy

DNE

noble

ignored

oracular

ignored

plucky

ignored

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/bionic

needs-triage

esm-infra/focal

DNE

focal

DNE

jammy

DNE

noble

DNE

oracular

DNE

plucky

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/focal

needs-triage

esm-infra/bionic

ignored

focal

ignored

jammy

DNE

noble

DNE

oracular

DNE

plucky

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra/focal

ignored

focal

ignored

jammy

DNE

noble

DNE

oracular

DNE

plucky

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/jammy

needs-triage

esm-infra/focal

DNE

focal

DNE

jammy

ignored

noble

DNE

oracular

DNE

plucky

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra/focal

DNE

focal

DNE

jammy

ignored

noble

DNE

oracular

DNE

plucky

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

code not present
esm-infra/focal

DNE

focal

ignored

end of standard support, was needed
jammy

needed

noble

not-affected

code not present
oracular

not-affected

code not present
plucky

not-affected

code not present
upstream

released

128.7,135

Показывать по

Ссылки на источники

EPSS

Процентиль: 22%
0.0007
Низкий

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-1014

CVSS3: 5.3
redhat
4 месяца назад

Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.

nvd логотип

CVE-2025-1014

CVSS3: 8.8
nvd
4 месяца назад

Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.

debian логотип

CVE-2025-1014

CVSS3: 8.8
debian
4 месяца назад

Certificate length was not properly checked when added to a certificat ...

github логотип

GHSA-v2xc-3r7v-9vrm

CVSS3: 8.8
github
4 месяца назад

Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.

fstec логотип

BDU:2025-02309

CVSS3: 8.8
fstec
5 месяцев назад

Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, Thunderbird ESR связанная с ошибками процедуры подтверждения подлинности сертификата, позволяющая нарушителю оказывать воздействие на конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 22%
0.0007
Низкий

8.8 High

CVSS3