{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-6429","assignerOrgId":"f16b083a-5664-49f3-a51e-8d479e5ed7fe","state":"PUBLISHED","assignerShortName":"mozilla","dateReserved":"2025-06-20T14:51:34.184Z","datePublished":"2025-06-24T12:28:00.819Z","dateUpdated":"2026-04-13T14:30:42.931Z"},"containers":{"cna":{"affected":[{"product":"Firefox","vendor":"Mozilla","versions":[{"status":"unaffected","version":"128.12","lessThanOrEqual":"128.*","versionType":"rpm"},{"status":"unaffected","version":"140","lessThanOrEqual":"*","versionType":"rpm"}]},{"product":"Thunderbird","vendor":"Mozilla","versions":[{"status":"unaffected","version":"128.12","lessThanOrEqual":"128.*","versionType":"rpm"},{"status":"unaffected","version":"140","lessThanOrEqual":"*","versionType":"rpm"}]}],"descriptions":[{"lang":"en","value":"Firefox could have incorrectly parsed a URL and rewritten it to the youtube.com domain when parsing the URL specified in an `embed` tag.  This could have bypassed website security checks that restricted which domains users were allowed to embed. This vulnerability was fixed in Firefox 140, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12.","supportingMedia":[{"type":"text/html","base64":false,"value":"Firefox could have incorrectly parsed a URL and rewritten it to the youtube.com domain when parsing the URL specified in an <code>embed</code> tag.  This could have bypassed website security checks that restricted which domains users were allowed to embed. This vulnerability was fixed in Firefox 140, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12."}]}],"title":"Incorrect parsing of URLs could have allowed embedding of youtube.com","references":[{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1970658"},{"url":"https://www.mozilla.org/security/advisories/mfsa2025-51/"},{"url":"https://www.mozilla.org/security/advisories/mfsa2025-53/"},{"url":"https://www.mozilla.org/security/advisories/mfsa2025-54/"},{"url":"https://www.mozilla.org/security/advisories/mfsa2025-55/"}],"credits":[{"lang":"en","value":"Masato Kinugawa"}],"providerMetadata":{"orgId":"f16b083a-5664-49f3-a51e-8d479e5ed7fe","shortName":"mozilla","dateUpdated":"2026-04-13T14:30:42.931Z"}},"adp":[{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-116","lang":"en","description":"CWE-116 Improper Encoding or Escaping of Output"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":6.5,"attackVector":"NETWORK","baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N","integrityImpact":"HIGH","userInteraction":"REQUIRED","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"NONE","confidentialityImpact":"NONE"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-06-25T14:21:21.354270Z","id":"CVE-2025-6429","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-06-25T14:28:51.535Z"}},{"title":"CVE Program Container","references":[{"url":"https://lists.debian.org/debian-lts-announce/2025/07/msg00002.html"},{"url":"https://lists.debian.org/debian-lts-announce/2025/06/msg00029.html"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T20:07:03.248Z"}}]}}