216.73.217.98

CVE-2025-13027

· Published 11/11/2025 16:15 · Modified 19/11/2025 20:15

Labels: CVE-2025-13027 2025-11-11CVE-2025-13027CWE-119[email protected]

Essential information

Published
11/11/2025 16:15
Modified
19/11/2025 20:15
Author
Creator
CVSS
8.1 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 145 and Thunderbird < 145.

NVD status

Status
Modified — CVE has been amended by a source (CVE Primary CNA or another CNA). Analysis data supplied by the NVD may be no longer be accurate due to these changes.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mozilla / firefox cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*

References