VYPR
High severity8.1NVD Advisory· Published Jun 24, 2025· Updated Apr 13, 2026

CVE-2025-6435

CVE-2025-6435

Description

If a user saved a response from the Network tab in Devtools using the Save As context menu option, that file may not have been saved with the .download file extension. This could have led to the user inadvertently running a malicious executable. This vulnerability was fixed in Firefox 140 and Thunderbird 140.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

72

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.