CVE-2025-5263

Publication date

2025-05-27 12:29:22

Family

mozilla

State

PUBLISHED

Description

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, Firefox ESR < 128.11, Thunderbird < 139, and Thunderbird < 128.11.