CVE-2025-9180
Same-origin policy bypass in the Graphics: Canvas2D component. This vulnerability affects Firefox < 142, Firefox ESR < 115.27, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.
Vendor
Product
CWE
Yayın Tarihi
2025-08-19 21:15:30
Güncelleme
2025-11-03 19:16:16
Source Identifier
security@mozilla.org
KEV Date Added
-
Kategoriler
Referanslar
https://bugzilla.mozilla.org/show_bug.cgi?id=1979782
https://www.mozilla.org/security/advisories/mfsa2025-64/
https://www.mozilla.org/security/advisories/mfsa2025-65/
https://www.mozilla.org/security/advisories/mfsa2025-66/
https://www.mozilla.org/security/advisories/mfsa2025-67/
https://www.mozilla.org/security/advisories/mfsa2025-70/
https://www.mozilla.org/security/advisories/mfsa2025-71/
https://www.mozilla.org/security/advisories/mfsa2025-72/
https://lists.debian.org/debian-lts-announce/2025/08/msg00016.html
https://lists.debian.org/debian-lts-announce/2025/08/msg00018.html