Логотип exploitDog
bind:"GHSA-823q-pcrj-c4xv" OR bind:"CVE-2025-6427"
Консоль
Логотип exploitDog

exploitDog

bind:"GHSA-823q-pcrj-c4xv" OR bind:"CVE-2025-6427"

Количество 9

Количество 9

github логотип

GHSA-823q-pcrj-c4xv

около 1 месяца назад

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140.

CVSS3: 9.1
EPSS: Низкий
ubuntu логотип

CVE-2025-6427

около 1 месяца назад

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVSS3: 9.1
EPSS: Низкий
redhat логотип

CVE-2025-6427

около 1 месяца назад

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVSS3: 6.1
EPSS: Низкий
nvd логотип

CVE-2025-6427

около 1 месяца назад

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVSS3: 9.1
EPSS: Низкий
debian логотип

CVE-2025-6427

около 1 месяца назад

An attacker was able to bypass the `connect-src` directive of a Conten ...

CVSS3: 9.1
EPSS: Низкий
fstec логотип

BDU:2025-07652

около 1 месяца назад

Уязвимость механизма Content Security Policy (CSP) браузера Mozilla Firefox, позволяющая нарушителю обойти ограничения безопасности и получить несанкционированный доступ к защищаемой информации

CVSS3: 9.1
EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2025:02339-1

20 дней назад

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2025:02546-1

7 дней назад

Security update for MozillaThunderbird

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2025:02529-1

12 дней назад

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
github логотип
GHSA-823q-pcrj-c4xv

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140.

CVSS3: 9.1
0%
Низкий
около 1 месяца назад
ubuntu логотип
CVE-2025-6427

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVSS3: 9.1
0%
Низкий
около 1 месяца назад
redhat логотип
CVE-2025-6427

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVSS3: 6.1
0%
Низкий
около 1 месяца назад
nvd логотип
CVE-2025-6427

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by manipulating subdocuments. This would have also hidden the connections from the Network tab in Devtools. This vulnerability affects Firefox < 140 and Thunderbird < 140.

CVSS3: 9.1
0%
Низкий
около 1 месяца назад
debian логотип
CVE-2025-6427

An attacker was able to bypass the `connect-src` directive of a Conten ...

CVSS3: 9.1
0%
Низкий
около 1 месяца назад
fstec логотип
BDU:2025-07652

Уязвимость механизма Content Security Policy (CSP) браузера Mozilla Firefox, позволяющая нарушителю обойти ограничения безопасности и получить несанкционированный доступ к защищаемой информации

CVSS3: 9.1
0%
Низкий
около 1 месяца назад
suse-cvrf логотип
SUSE-SU-2025:02339-1

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

20 дней назад
suse-cvrf логотип
SUSE-SU-2025:02546-1

Security update for MozillaThunderbird

7 дней назад
suse-cvrf логотип
SUSE-SU-2025:02529-1

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

12 дней назад

Уязвимостей на страницу