Security Advisory

CVE-2025-1933

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-04 13:31:23

Last updated 2026-04-13 14:27:38

Assigner mozilla

State PUBLISHED

Description

On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8.

← Browse all CVEs View on cve.org ↗