Security Advisory

CVE-2025-5267

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-27 12:29:25

Last updated 2026-04-13 14:29:10

Assigner mozilla

State PUBLISHED

Description

A clickjacking vulnerability could have been used to trick a user into leaking saved payment card details to a malicious page. This vulnerability was fixed in Firefox 139, Firefox ESR 128.11, Thunderbird 139, and Thunderbird 128.11.

← Browse all CVEs View on cve.org ↗