CVE-2025-5266 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Script elements loading cross-origin resources generated load and error events which leaked information enabling XS-Leaks attacks. This vulnerability affects Fi…
Medium CVSS: 4.3

CVE-2025-5266

Script elements loading cross-origin resources generated load and error events which leaked information enabling XS-Leaks attacks. This vulnerability affects Firefox < 139, Firefox ESR < 128.11, Thunderbird < 139, and Thunderbird < 128.11.
Vendor
Mozilla
Product
Firefox
CWE
CWE-200
Yayın Tarihi
2025-05-27 13:15:22
Güncelleme
2025-11-03 20:19:16
Source Identifier
security@mozilla.org
KEV Date Added
-

Kategoriler

CWE-200 Firefox MEDIUM Mozilla 2025

Referanslar

https://bugzilla.mozilla.org/show_bug.cgi?id=1965628 https://www.mozilla.org/security/advisories/mfsa2025-42/ https://www.mozilla.org/security/advisories/mfsa2025-44/ https://www.mozilla.org/security/advisories/mfsa2025-45/ https://www.mozilla.org/security/advisories/mfsa2025-46/ https://lists.debian.org/debian-lts-announce/2025/05/msg00043.html https://lists.debian.org/debian-lts-announce/2025/05/msg00046.html