CVE-2025-8043
published 2025-07-22CVE-2025-8043: Focus incorrectly truncated URLs towards the beginning instead of around the origin. This vulnerability was fixed in Firefox 141.
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Focus incorrectly truncated URLs towards the beginning instead of around the origin. This vulnerability was fixed in Firefox 141.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 141.0-1 (sid) | firefox 141.0-1 (sid) |
| mozilla | firefox | < 141.0 | 141.0 |
| mozilla | firefox | — | — |
| mozilla | thunderbird | < 141.0 | 141.0 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL