CVE-2025-1941
published 2025-03-04CVE-2025-1941: Under certain circumstances, a user opt-in setting that Focus should require authentication before use could have been be bypassed (distinct from…
critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
Under certain circumstances, a user opt-in setting that Focus should require authentication before use could have been be bypassed (distinct from CVE-2025-0245). This vulnerability was fixed in Firefox 136.
Affected
27 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | — | — |
| mozilla | firefox | < 136.0 | 136.0 |
| mozilla | firefox | — | — |
| msrc | azl3_grpc_1.42.0-7 | — | — |
| msrc | azl3_keras_2.11.0-3 | — | — |
| msrc | azl3_keras_3.1.1-1 | — | — |
| msrc | azl3_mozjs_102.15.1-1 | — | — |
| msrc | azl3_mysql_8.0.36-1 | — | — |
| msrc | azl3_mysql_8.0.40-1 | — | — |
| msrc | azl3_protobuf_25.3-1 | — | — |
| msrc | azl3_protobuf_3.17.3-2 | — | — |
| msrc | azl3_python-tensorboard_2.11.0-3 | — | — |
| msrc | azl3_python-tensorboard_2.16.2-1 | — | — |
| msrc | azl3_pytorch_2.2.2-2 | — | — |
| msrc | azl3_pytorch_2.2.2-7 | — | — |
| msrc | azl3_tensorflow_2.11.1-1 | — | — |
| msrc | azl3_tensorflow_2.16.1-1 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_grpc_1.42.0-11 | — | — |
| msrc | cbl2_keras_2.11.0-3 | — | — |
| msrc | cbl2_mysql_8.0.40-1 | — | — |
| msrc | cbl2_protobuf_3.17.3-3 | — | — |
| msrc | cbl2_python-tensorboard_2.11.0-3 | — | — |
| msrc | cbl2_pytorch_2.0.0-7 | — | — |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
osv3.3LOW