Количество 9
Количество 9
BDU:2025-10491
Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с отсутствием флага «Secure» в файлах cookie HTTPS-сеанса, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации
CVE-2025-8037
Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1.
CVE-2025-8037
Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1.
CVE-2025-8037
Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1.
CVE-2025-8037
Setting a nameless cookie with an equals sign in the value shadowed ot ...
GHSA-fw75-5frq-vxhg
Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1.
SUSE-SU-2025:02531-1
Security update for MozillaFirefox
SUSE-SU-2025:02546-1
Security update for MozillaThunderbird
SUSE-SU-2025:02529-1
Security update for MozillaFirefox, MozillaFirefox-branding-SLE
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-10491 Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с отсутствием флага «Secure» в файлах cookie HTTPS-сеанса, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации | CVSS3: 9.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-8037 Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1. | CVSS3: 9.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-8037 Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1. | CVSS3: 6.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-8037 Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1. | CVSS3: 9.1 | 0% Низкий | 4 месяца назад |
| CVE-2025-8037 Setting a nameless cookie with an equals sign in the value shadowed ot ... | CVSS3: 9.1 | 0% Низкий | 4 месяца назад |
| GHSA-fw75-5frq-vxhg Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1. | CVSS3: 9.1 | 0% Низкий | 4 месяца назад |
 | SUSE-SU-2025:02531-1 Security update for MozillaFirefox | 3 месяца назад | ||
| SUSE-SU-2025:02546-1 Security update for MozillaThunderbird | 3 месяца назад | ||
| SUSE-SU-2025:02529-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLE | 4 месяца назад |
Уязвимостей на страницу