CNNVD-202512-1560 Information
CNNVD ID
CNNVD-202512-1560
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 146之前版本、Firefox ESR 115.31之前版本和140.6之前版本存在安全漏洞,该漏洞源于Graphics CanvasWebGL组件边界条件处理不当,可能导致沙箱逃逸。
Description (English)
Mozilla Firefox is an open-source Web browser for the Mozilla Foundation in the United States. The previous version of Mozilla Firefox 146, the previous version of Firefox ESR 115.31 and the previous version of 140.6 had a security loophole, which stemmed from inadequate handling of the boundary conditions of the Graphics Canvas WebGL component, which could lead to the escape of sandboxes.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Mozilla
Published
2025-12-09
Last Modified
2026-02-24
References
https://www.mozilla.org/security/advisories/mfsa2025-93/ https://www.mozilla.org/security/advisories/mfsa2025-94/ https://www.mozilla.org/security/advisories/mfsa2025-95/ https://www.mozilla.org/security/advisories/mfsa2025-96/ https://bugzilla.mozilla.org/show_bug.cgi?id=1996473 https://www.mozilla.org/security/advisories/mfsa2025-92/