CVE-2025-0243

MEDIUM Year: 2025
CVSS v3 Score
5.1
Medium
Weakness Type
CWE-787
View all →

Vulnerability Description

Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.

Related Vulnerabilities

CVE-2018-9389

MEDIUM
CVSS:5.1(Medium)

In ip6_append_data of ip6_output.c, there is a possible way to achieve code execution due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privi...

CWE-7872018

CVE-2024-45185

MEDIUM
CVSS:5.1(Medium)

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, Modem 5123, Modem...

CWE-7872024

CVE-2017-6439

MEDIUM
CVSS:5.0(Medium)

Heap-based buffer overflow in the parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds write) via a crafted plist fil...

CWE-7872017

CVE-2020-25085

MEDIUM
CVSS:5.0(Medium)

QEMU 5.0.0 has a heap-based Buffer Overflow in flatview_read_continue in exec.c because hw/sd/sdhci.c mishandles a write operation in the SDHC_BLKSIZE case.

CWE-7872020

CVE-2023-52633

MEDIUM
CVSS:5.0(Medium)

In the Linux kernel, the following vulnerability has been resolved: um: time-travel: fix time corruption In 'basic' time-travel mode (without =inf-cpu or =ext), we still get timer interrupts. These ca...

CWE-7872023

CVE-2017-6867

MEDIUM
CVSS:4.9(Medium)

A vulnerability was discovered in Siemens SIMATIC WinCC (V7.3 before Upd 11 and V7.4 before SP1), SIMATIC WinCC Runtime Professional (V13 before SP2 and V14 before SP1), SIMATIC WinCC (TIA Portal) Pro...

CWE-7872017