CVE-2025-13017 | Mozilla Firefox up to 144 Notifications cross-domain policy

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability described as critical has been identified in Mozilla Firefox up to 144. Affected is an unknown function of the component Notifications. Executing manipulation can lead to permissive cross-domain policy with untrusted domains.

The identification of this vulnerability is CVE-2025-13017. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2025-13017 | Mozilla Firefox up to 144 Notifications cross-domain policy

Post correlati

CVE-2024-29661 | DedeCMS 5.7 unrestricted upload

CVE-2024-40842 | Apple macOS up to 14.7 Environment Variable access control

CVE-2024-51505 | Atos Eviden IDRA up to 2.7.0 race condition

CVE-2024-55603 | Kanban up to 1.2.42 SessionHandler.php session expiration (GHSA-gv5c-8pxr-p484)