CVE-2025-1937

HIGH Year: 2025
CVSS v3 Score
7.5
High
Weakness Type
CWE-1260
View all →

Vulnerability Description

Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 115.20, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 136, Firefox ESR < 115.21, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8.

Related Vulnerabilities

CVE-2019-1164

HIGH
CVSS:7.8(High)

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in...

CWE-12602019

CVE-2022-27813

HIGH
CVSS:8.2(High)

Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to en...

CWE-12602022

CVE-2024-4778

CRITICAL
CVSS:9.8(Critical)

Memory safety bugs present in Firefox 125. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code....

CWE-12602024

CVE-2022-27813

HIGH
CVSS:8.2(High)

Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to en...

CWE-12602022

CVE-2019-1164

HIGH
CVSS:7.8(High)

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in...

CWE-12602019