Vulnerability Database

309,364

Total vulnerabilities in the database

CVE-2025-5269

Memory safety bug present in Firefox ESR 128.10, and Thunderbird 128.10. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 128.11 and Thunderbird < 128.11.

Published: May 27, 2025
Updated: Nov 4, 2025
CVE: CVE-2025-5269
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.1
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
mozilla / firefox	-	128.11.0
mozilla / thunderbird	-	128.11.0

https://bugzilla.mozilla.org/show_bug.cgi?id=1924108
https://lists.debian.org/debian-lts-announce/2025/05/msg00043.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00046.html
https://www.mozilla.org/security/advisories/mfsa2025-44/
https://www.mozilla.org/security/advisories/mfsa2025-46/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo