Multiple vulnerabilities in Mozilla Firefox ESR

Описание

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

1. Race condition vulnerability in the Graphics component can be exploited to cause denial of service.
2. Mitigation bypass vulnerability in the DOM: Core & HTML component can be exploited to bypass security restrictions.
3. Use-after-free vulnerability in the Audio/Video component can be exploited to cause denial of service or execute arbitrary code.
4. Spoofing vulnerability in Firefox can be exploited to spoof user interface.

Первичный источник обнаружения

• MFSA2025-89
  

Связанные продукты

• Mozilla-Firefox-ESR

Список CVE

• CVE-2025-13012
  critical
• CVE-2025-13013
  high
• CVE-2025-13014
  critical
• CVE-2025-13015
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com