CVE-2025-1017

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 4, 2025

Updated: Feb 6, 2025

CWE ID 787

Summary

CVE-2025-1017 denotes a group of memory safety bugs identified in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6. Some of these bugs exhibit signs of memory corruption and are believed to be potentially exploitable for running arbitrary code. Affected versions include Firefox below 135, Firefox ESR below 128.7, Thunderbird below 128.7, and Thunderbird below 135. Users are encouraged to update their browsers to mitigate these vulnerabilities.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mozilla Thunderbird
Mozilla Firefox

Affected Vendors

Mozilla

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2dwEc9
https://www.cve.org/CVERecord?id=CVE-2025-1017
https://nvd.nist.gov/vuln/detail/CVE-2025-1017

Back to Vulnerability Database