PT-2025-21809 · Mozilla+11 · Firefox Esr+11
Manfred Paul
·
Published
2025-05-17
·
Updated
2025-10-01
·
CVE-2025-4919
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Firefox versions prior to 138.0.4
Firefox ESR versions prior to 128.10.1
Firefox ESR versions prior to 115.23.1
Thunderbird versions prior to 128.10.2
Thunderbird versions prior to 138.0.2
Description
The vulnerability is related to an out-of-bounds read or write on a JavaScript object by confusing array index sizes. This could potentially result in the execution of arbitrary code. An attacker was able to exploit this issue to win $50,000 in a Pwn2Own competition.
Recommendations
For Firefox versions prior to 138.0.4, upgrade to version 138.0.4 or later.
For Firefox ESR versions prior to 128.10.1, upgrade to version 128.10.1 or later.
For Firefox ESR versions prior to 115.23.1, upgrade to version 115.23.1 or later.
For Thunderbird versions prior to 128.10.2, upgrade to version 128.10.2 or later.
For Thunderbird versions prior to 138.0.2, upgrade to version 138.0.2 or later.
Fix
RCE
Out of bounds Read
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Debian
Firefox Esr
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu