CVE-2025-10534
published 2025-09-16CVE-2025-10534: Spoofing issue in the Site Permissions component. This vulnerability was fixed in Firefox 143 and Thunderbird 143.
high8.1CVSS 3.1
AVNACLPRNUIRSUCHIHAN
Spoofing issue in the Site Permissions component. This vulnerability was fixed in Firefox 143 and Thunderbird 143.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 143.0-1 (sid) | firefox 143.0-1 (sid) |
| mozilla | firefox | < 143.0 | 143.0 |
| mozilla | firefox | — | — |
| mozilla | thunderbird | < 143.0 | 143.0 |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
osv8.1HIGH