CNNVD-202510-3831 Information

CNNVD ID

CNNVD-202510-3831

Related CVE

CVE-2025-12380

• CNNVD Published: 2025-10-28

Description (Chinese)

Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 144.0.2之前版本存在安全漏洞，该漏洞源于WebGPU相关IPC调用中存在释放后重用问题，可能导致子进程沙箱逃逸。

Description (English)

Mozilla Firefox is an open-source Web browser for the Mozilla Foundation in the United States. There was a security loophole in the previous version of Mozilla Firefox 144.02, which stemmed from post-release reuse in the relevant IPC call from WebGPU, which could lead to the escape of sub-process sandboxes.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Mozilla

Published

2025-10-28

Last Modified

2026-02-24

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1993113 https://www.mozilla.org/security/advisories/mfsa2025-86/

Patch

https://www.mozilla.org/security/advisories/mfsa2025-86/