CVE-2025-6427 | Mozilla Firefox up to 139 Content Security Policy connect-src ui layer

A vulnerability was found in Mozilla Firefox up to 139. It has been rated as problematic. This issue affects some unknown processing of the component Content Security Policy Handler. The manipulation of the argument connect-src leads to improper restriction of rendered ui layers.

The identification of this vulnerability is CVE-2025-6427. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More