CVE-2025-6433 – “Firefox WebAuthn TLS Certificate Exception Vulnerability”

June 24, 2025

CVE ID : CVE-2025-6433

Published : June 24, 2025, 1:15 p.m. | 1 hour, 23 minutes ago

Description : If a user visited a webpage with an invalid TLS certificate, and granted an exception, the webpage was able to provide a WebAuthn challenge that the user would be prompted to complete. This is in violation of the WebAuthN spec which requires “a secure transport established without errors”. This vulnerability affects Firefox
Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6566 – Oatpp Oat++ JSON DeserializeArray Stack-Based Buffer Overflow Vulnerability

Next Article CVE-2025-6431 – “Firefox for Android External Application Bypass Vulnerability”

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

CVE-2025-6433 – “Firefox WebAuthn TLS Certificate Exception Vulnerability”

Critical Kaleris Navis N4 Flaw (CVE-2025-2566, CVSS 9.8): Supply Chain Infrastructure at Risk!

TeamViewer for Windows Vulnerability Let Attackers Delete Files Using SYSTEM Privileges

A security key for every employee? Yubikey-as-a-Service goes global

I always recommend buying headphones on sale, and these are the ones to snag during Memorial Day sales

CVE-2025-5479 – Sony XAV-AX8500 Bluetooth AVCTP Protocol Heap-based Buffer Overflow Remote Code Execution

The only keyboard I need for travel now is also Razer’s first designed for macOS, but it has a weakness

CVE-2025-4011 – Redmine Custom Query Handler Cross Site Scripting Vulnerability

Do Reasoning Models Really Need Transformers?: Researchers from TogetherAI, Cornell, Geneva, and Princeton Introduce M1—A Hybrid Mamba-Based AI that Matches SOTA Performance at 3x Inference Speed

CVE-2025-4731 – TOTOLINK HTTP POST Request Handler Buffer Overflow Vulnerability

Discover the Average Cost for Website Redesign: What to Expect in 2025

CVE-2025-6433 – “Firefox WebAuthn TLS Certificate Exception Vulnerability”

Related Posts