πŸ” CVE Alert

CVE-2025-0247

CRITICAL 9.8

Memory safety bugs fixed in Firefox 134 and Thunderbird 134

CVSS Score
9.8
EPSS Score
0.0%
EPSS Percentile
0th

Memory safety bugs present in Firefox 133 and Thunderbird 133. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 134 and Thunderbird 134.

Vendor mozilla
Product firefox
Ecosystems
Industries
Technology
Published Jan 7, 2025
Last Updated Apr 13, 2026
Stay Ahead of the Next One

Get instant alerts for mozilla firefox

Be the first to know when new critical vulnerabilities affecting mozilla firefox are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

Mozilla / Firefox
All versions affected
Mozilla / Thunderbird
All versions affected

References

NVD β†— CVE.org β†— EPSS Data β†—
bugzilla.mozilla.org: https://bugzilla.mozilla.org/buglist.cgi?bug_id=1835193%2C1910021%2C1919803%2C1931576%2C1931948%2C1932173 mozilla.org: https://www.mozilla.org/security/advisories/mfsa2025-01/ mozilla.org: https://www.mozilla.org/security/advisories/mfsa2025-04/

Credits

Akmat Suleimanov, Jed Davis, AndrΓ© Bargull, and the Mozilla Fuzzing Team