Spoofing Vulnerability in Firefox by Mozilla
CVE-2025-14327

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 9 December 2025

What is CVE-2025-14327?

A spoofing vulnerability has been identified within the Downloads Panel component of Firefox, affecting all versions prior to 146. This flaw can lead to unauthorized information being displayed to users, potentially compromising their safety and data integrity. Users are advised to update to the latest version to mitigate the risks associated with this vulnerability.

Affected Version(s)

Firefox < 146

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1970743

https://www.mozilla.org/security/advisories/mfsa2025-92/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2025
Vulnerability Reserved
Dec 9, 2025

Credit

Caro Kann

JSON