PT-2025-21808 · Mozilla+11 · Firefox Esr+11
Edouard Bochin
+1
·
Published
2025-05-17
·
Updated
2025-10-01
·
CVE-2025-4918
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Firefox versions prior to 138.0.4
Firefox ESR versions prior to 128.10.1
Firefox ESR versions prior to 115.23.1
Description
An attacker was able to perform an out-of-bounds read or write on a JavaScript
Promise object. This issue was demonstrated during Pwn2Own Berlin 2025, where it was used to trigger out-of-bounds memory access. The vulnerability allows for code execution.Recommendations
For Firefox versions prior to 138.0.4, update to version 138.0.4 or later.
For Firefox ESR versions prior to 128.10.1, update to version 128.10.1 or later.
For Firefox ESR versions prior to 115.23.1, update to version 115.23.1 or later.
Exploit
Fix
RCE
Out of bounds Read
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Debian
Firefox Esr
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu