VYPR
Medium severity6.5NVD Advisory· Published May 27, 2025· Updated Apr 13, 2026

CVE-2025-5271

CVE-2025-5271

Description

Previewing a response in Devtools ignored CSP headers, which could have allowed content injection attacks. This vulnerability was fixed in Firefox 139 and Thunderbird 139.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.