CVE-2025-1013 | THREATINT

Description

A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.

PUBLISHED Reserved 2025-02-04 | Published 2025-02-04 | Updated 2025-11-03 | Assigner mozilla

Problem types

Potential opening of private browsing tabs in normal browsing windows

Product status

Any version before 135

affected

Any version before 128.7

affected

Any version before 128.7

affected

Any version before 135

affected

Credits

Maruf Bin Murtuza

References

lists.debian.org/debian-lts-announce/2025/02/msg00006.html

bugzilla.mozilla.org/show_bug.cgi?id=1932555

www.mozilla.org/security/advisories/mfsa2025-07/

www.mozilla.org/security/advisories/mfsa2025-09/

www.mozilla.org/security/advisories/mfsa2025-10/

www.mozilla.org/security/advisories/mfsa2025-11/

cve.org (CVE-2025-1013)

nvd.nist.gov (CVE-2025-1013)

Download JSON

help @ threatint.eu