9 matches found
CVE-2025-8036 vulnerabilities
Vulnerabilities for packages: firefox-esr, firefox...
CVE-2025-8036 vulnerabilities
Vulnerabilities for packages: firefox...
CVE-2025-8036
creationtimestamp| type| source ---|---|--- 2025-07-24 12:26:21+00:00| seen| https://poliverso.org/objects/0477a01e-5811f83d-175e754718197297 2025-10-17 13:07:48+00:00| seen| https://gist.github.com/Darkcrai86/4b4db0d3635cab7e0d6a24e6ea509f3c 2026-04-13 17:57:02+00:00| seen|...
Slackware: Security Advisory (SSA:2025-203-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-8036
Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...
CVE-2025-8036
Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...
CVE-2025-8036 DNS rebinding circumvents CORS
Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...
CVE-2025-8036
Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...
CVE-2025-8036
CVE-2025-8036 : Affects Mozilla Firefox (prior to 141, ESR prior to 140.1) and Thunderbird (prior to 141, 140.1). Root cause is caching of CORS preflight responses across IP address changes, enabling bypass of same-origin policy via DNS rebinding. Connected sources corroborate a DNS-rebinding vec...