CVE-2025-8037
CVE Information
CVE ID
CVE-2025-8037
Severity
CRITICAL
CVSS 9.1
Publish Date
2025-07-22
Description
Setting a nameless cookie with an equals sign in the value shadowed other cookies. Even if the nameless cookie was set over HTTP and the shadowed cookie included the `Secure` attribute. This vulnerability affects Firefox < 141, Firefox ESR < 140.1, Thunderbird < 141, and Thunderbird < 140.1.
Collection Date
2026-01-13
Impact Summary
Affected Hosts
1
Related Incidents
0
Related Alerts
0
Affected Hosts (1)
| Hostname | OS Type | Severity | Total CVEs |
|---|---|---|---|
| inbridge-ubt-24 | LINUX | CRITICAL | 2364 |