 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.2.1.2025.14 |
| Categoría: | General |
| Título: | Mozilla Firefox Security Advisory (MFSA2025-14) - Linux |
| Resumen: | This host is missing a security update for Mozilla Firefox. |
| Descripción: | Summary: This host is missing a security update for Mozilla Firefox. Vulnerability Insight: CVE-2025-1931: Use-after-free in WebTransportChild It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash. CVE-2025-1932: Inconsistent comparator in XSLT sorting led to out-of-bounds access An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122 and later. CVE-2025-1933: JIT corruption of WASM i32 return values on 64-bit CPUs On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. CVE-2025-1934: Unexpected GC during RegExp bailout processing It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. CVE-2025-1942: Disclosure of uninitialized memory when .toUpperCase() causes string to get longer When String.toUpperCase() caused a string to get longer it was possible for uninitialized memory to be incorporated into the result string CVE-2025-1935: Clickjacking the registerProtocolHandler info-bar A web page could trick a user into setting that site as the default handler for a custom URL protocol. CVE-2025-1936: Adding %00 and a fake extension to a jar: URL changed the interpretation of the contents jar: URLs retrieve local file ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: Firefox version(s) below 136. Solution: The vendor has released an update. Please see the reference(s) for more information. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2025-1931 Common Vulnerability Exposure (CVE) ID: CVE-2025-1932 Common Vulnerability Exposure (CVE) ID: CVE-2025-1933 Common Vulnerability Exposure (CVE) ID: CVE-2025-1934 Common Vulnerability Exposure (CVE) ID: CVE-2025-1935 Common Vulnerability Exposure (CVE) ID: CVE-2025-1936 Common Vulnerability Exposure (CVE) ID: CVE-2025-1937 Common Vulnerability Exposure (CVE) ID: CVE-2025-1938 Common Vulnerability Exposure (CVE) ID: CVE-2025-1942 Common Vulnerability Exposure (CVE) ID: CVE-2025-1943 |
| Copyright | Copyright (C) 2025 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |