VDB
WID-SEC-W-2025-0026
WID-SEC-W-2025-0026
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Firefox ist ein Open Source Web Browser. ESR ist die Variante mit verlängertem Support. Thunderbird ist ein Open Source E-Mail Client.
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla Firefox ESR 128.6 | ||
| SUSE Linux | ||
| SUSE openSUSE | ||
| Mozilla Thunderbird <134 | ||
| Oracle Linux | ||
| Red Hat Enterprise Linux | ||
| Amazon Linux 2 | ||
| Mozilla Thunderbird <ESR 128.6 | ||
| Mozilla Firefox ESR <128.6 | ||
| Mozilla Firefox ESR <115.19 | ||
| Debian Linux | ||
| Mozilla Thunderbird 134 | ||
| RESF Rocky Linux | ||
| IGEL OS | ||
| Fedora Linux | ||
| Gentoo Linux | ||
| Mozilla Firefox <134 | ||
| Mozilla Firefox ESR 115.19 | ||
| Mozilla Firefox 134 | ||
| Mozilla Thunderbird ESR 128.6 |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0026.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0026 (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-01/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-02/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-03/ (circl)
- https://access.redhat.com/errata/RHSA-2025:0080 (circl)
- https://access.redhat.com/errata/RHSA-2025:0135 (circl)
- https://lists.debian.org/debian-security-announce/2025/msg00000.html (circl)
- https://access.redhat.com/errata/RHSA-2025:0147 (circl)
- https://access.redhat.com/errata/RHSA-2025:0137 (circl)
…and 45 more exploits
Timeline
- Jan 7, 2025 CVE Published
- Sep 17, 2025 CVE Updated
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0026.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0026 advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-01/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-02/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-03/ url
- https://access.redhat.com/errata/RHSA-2025:0080 url
- https://access.redhat.com/errata/RHSA-2025:0135 url
- https://lists.debian.org/debian-security-announce/2025/msg00000.html url
- https://access.redhat.com/errata/RHSA-2025:0147 url
- https://access.redhat.com/errata/RHSA-2025:0137 url
- https://access.redhat.com/errata/RHSA-2025:0144 url
- https://access.redhat.com/errata/RHSA-2025:0134 url
- https://ubuntu.com/security/notices/USN-7191-1 url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/LKLU2J7H4YLXHVAZAROZZL5CYOTGOZOX/ url
- https://access.redhat.com/errata/RHSA-2025:0136 url
- https://access.redhat.com/errata/RHSA-2025:0138 url
- https://access.redhat.com/errata/RHSA-2025:0132 url
- https://access.redhat.com/errata/RHSA-2025:0133 url
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-04/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-05/ url
…and 34 more