CVE-2025-1014 — Improper Certificate Validation in Mozilla Firefox

CWE-295 — Improper Certificate Validation CWE-1284 — Improper Validation of Specified Quantity in Input18 documents10 sources

Severity

8.8HIGHNVD

OSV9.8

EPSS

0.2%

top 56.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Thunderbird Linux Kernel Mozilla Firefox

Timeline

PublishedFeb 4

Latest updateDec 24

Description

Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability was fixed in Firefox 135, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

▶NVDmozilla/firefox< 128.7.0+1

▶NVDmozilla/thunderbird128.0.1 — 128.7.0+1

▶Ubuntumozilla/firefox< 135.0+build2-0ubuntu0.20.04.1

▶Debianmozilla/thunderbird< 1:128.7.0esr-1~deb11u1+3

▶Linuxlinux/linux_kernel4.12.0 — 5.10.248+6

🔴Vulnerability Details

OSV

nbd: defer config unlock in nbd_genl_connect↗2025-12-24

▶

OSV

firefox vulnerabilities↗2025-02-11

▶

CVEList

Certificate length was not properly checked↗2025-02-04

▶

GHSA

GHSA-v2xc-3r7v-9vrm: Certificate length was not properly checked when added to a certificate store↗2025-02-04

▶

OSV

CVE-2025-1014: Certificate length was not properly checked when added to a certificate store↗2025-02-04

▶

📋Vendor Advisories

Red Hat

kernel: nbd: defer config unlock in nbd_genl_connect↗2025-12-24

▶

Ubuntu

Thunderbird vulnerabilities↗2025-07-22

▶

Red Hat

kernel: f2fs: fix to do sanity check on sbi->total_valid_block_count↗2025-07-03

▶

Ubuntu

Firefox vulnerabilities↗2025-02-11

▶

Red Hat

firefox: thunderbird: Certificate length was not properly checked↗2025-02-04

▶

💬Community

Bugzilla

CVE-2025-68366 kernel: nbd: defer config unlock in nbd_genl_connect↗2025-12-24

▶