ГлавнаяУязвимости → CVE-2025-54143
9.8критическая

CVE-2025-54143

Описание

Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the expected sandbox restrictions declared on the parent page. This vulnerability was fixed in Firefox for iOS 141.

Затрагиваемое ПО
Mozilla Firefox
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://bugzilla.mozilla.org/show_bug.cgi?id=1912671https://www.mozilla.org/security/advisories/mfsa2025-60/