Логотип exploitDog
bind:"CVE-2025-0237"
Консоль
Логотип exploitDog

exploitDog

bind:"CVE-2025-0237"
Поиск уязвимостей по источнику БДУ ФСТЭК

БДУ ФСТЭК

Поиск уязвимостей по источнику Microsoft MSRC

Microsoft MSRC

Поиск уязвимостей по источнику NVD

NVD

Поиск уязвимостей по источнику Oracle ELSA

Oracle ELSA

Поиск уязвимостей по источнику Red Hat CVE

Red Hat CVE

Поиск уязвимостей по источнику РЕД ОС

РЕД ОС

Поиск уязвимостей по источнику Rocky RLSA

Rocky RLSA

Поиск уязвимостей по источнику SUSE CVRF

SUSE CVRF

Поиск уязвимостей по источнику Ubuntu

Ubuntu

Поиск уязвимостей по источнику Debian

Debian

Поиск уязвимостей по источнику Github

Github

Количество 13

Количество 13

ubuntu логотип

CVE-2025-0237

5 месяцев назад

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

CVSS3: 5.4
EPSS: Низкий
redhat логотип

CVE-2025-0237

5 месяцев назад

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

CVSS3: 6.8
EPSS: Низкий
nvd логотип

CVE-2025-0237

5 месяцев назад

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

CVSS3: 5.4
EPSS: Низкий
debian логотип

CVE-2025-0237

5 месяцев назад

The WebChannel API, which is used to transport various information acr ...

CVSS3: 5.4
EPSS: Низкий
github логотип

GHSA-2776-h8x3-vrr7

5 месяцев назад

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134 and Firefox ESR < 128.6.

CVSS3: 5.4
EPSS: Низкий
fstec логотип

BDU:2025-03142

5 месяцев назад

Уязвимость интерфейса WebChannel API браузеров Mozilla Firefox, Firefox ESR и почтовых клиентов Thunderbird, Thunderbird ESR, позволяющая нарушителю повысить свои привилегии

CVSS3: 6.8
EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2025:0080-1

5 месяцев назад

Security update for MozillaThunderbird

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2025:0059-1

5 месяцев назад

Security update for MozillaFirefox

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2025:0056-1

5 месяцев назад

Security update for MozillaFirefox

EPSS: Низкий
rocky логотип

RLSA-2025:0144

5 месяцев назад

Important: firefox security update

EPSS: Низкий
oracle-oval логотип

ELSA-2025-0144

5 месяцев назад

ELSA-2025-0144: firefox security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2025-0132

5 месяцев назад

ELSA-2025-0132: firefox security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2025-0080

5 месяцев назад

ELSA-2025-0080: firefox security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
ubuntu логотип
CVE-2025-0237

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

CVSS3: 5.4
0%
Низкий
5 месяцев назад
redhat логотип
CVE-2025-0237

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

CVSS3: 6.8
0%
Низкий
5 месяцев назад
nvd логотип
CVE-2025-0237

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

CVSS3: 5.4
0%
Низкий
5 месяцев назад
debian логотип
CVE-2025-0237

The WebChannel API, which is used to transport various information acr ...

CVSS3: 5.4
0%
Низкий
5 месяцев назад
github логотип
GHSA-2776-h8x3-vrr7

The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege escalation attacks. This vulnerability affects Firefox < 134 and Firefox ESR < 128.6.

CVSS3: 5.4
0%
Низкий
5 месяцев назад
fstec логотип
BDU:2025-03142

Уязвимость интерфейса WebChannel API браузеров Mozilla Firefox, Firefox ESR и почтовых клиентов Thunderbird, Thunderbird ESR, позволяющая нарушителю повысить свои привилегии

CVSS3: 6.8
0%
Низкий
5 месяцев назад
suse-cvrf логотип
SUSE-SU-2025:0080-1

Security update for MozillaThunderbird

5 месяцев назад
suse-cvrf логотип
SUSE-SU-2025:0059-1

Security update for MozillaFirefox

5 месяцев назад
suse-cvrf логотип
SUSE-SU-2025:0056-1

Security update for MozillaFirefox

5 месяцев назад
rocky логотип
RLSA-2025:0144

Important: firefox security update

5 месяцев назад
oracle-oval логотип
ELSA-2025-0144

ELSA-2025-0144: firefox security update (IMPORTANT)

5 месяцев назад
oracle-oval логотип
ELSA-2025-0132

ELSA-2025-0132: firefox security update (IMPORTANT)

5 месяцев назад
oracle-oval логотип
ELSA-2025-0080

ELSA-2025-0080: firefox security update (IMPORTANT)

5 месяцев назад

Уязвимостей на страницу