CVE-2025-0239

Published: 2025-01-07T16:15Z

Last Modified: 2025-04-03T16:29Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt