Security Advisory

CVE-2025-0238

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-07 16:07:06

Last updated 2026-04-13 14:28:53

Assigner mozilla

State PUBLISHED

Description

Assuming a controlled failed memory allocation, an attacker could have caused a use-after-free, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 134, Firefox ESR 128.6, Firefox ESR 115.19, Thunderbird 134, and Thunderbird 128.6.

← Browse all CVEs View on cve.org ↗