MFSA2025-07 Firefox: Security Vulnerabilities fixed in Firefox 135 (CVE-2025-1013)

MFSA2025-07 Firefox: Security Vulnerabilities fixed in Firefox 135 (CVE-2025-1013)

Severity

4

CVSS

(AV:L/AC:M/Au:N/C:P/I:P/A:P)

Published

02/04/2025

Created

02/05/2025

Added

02/05/2025

Modified

02/06/2025

Description

A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak. This vulnerability affects Firefox < 135, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.

Solution(s)

• mozilla-firefox-upgrade-135_0

References

• https://attackerkb.com/topics/cve-2025-1013
• CVE - 2025-1013
• http://www.mozilla.org/security/announce/2025/mfsa2025-07.html