Multiple vulnerabilities in Mozilla Firefox ESR

Description

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service, perform cross-site scripting attack.

Below is a complete list of vulnerabilities:

1. Validation of untrusted input vulnerability can be exploited to bypass security restrictions.
2. Security vulnerability can be exploited to bypass security restrictions.
3. Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
4. Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.

Original advisories

• MFSA2025-53

Related products

• Mozilla-Firefox-ESR

CVE list

• CVE-2025-6424
  unknown
• CVE-2025-6425
  unknown
• CVE-2025-6429
  unknown
• CVE-2025-6430
  unknown

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com