Main Vulnerability Database Vulnerabilities #VU113149

#VU113149 Multiple Interpretations of UI Input in Mozilla products - CVE-2025-8039

Published: July 22, 2025

Vulnerability identifier: #VU113149

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-8039

CWE-ID: CWE-450

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Mozilla Firefox
Firefox ESR
Firefox for Android

Software vendor:
Mozilla

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to in some cases search terms persisted in the URL bar even after navigating away from the search page. A remote attacker can obtain information about previous searches.

Remediation

Install updates from vendor's website.

External links

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-56/
https://bugzilla.mozilla.org/show_bug.cgi?id=1970997

#VU113149 Multiple Interpretations of UI Input in Mozilla products - CVE-2025-8039

Description

Remediation

External links

Please verify you're human