Volerion logoVolerion
Volerion logoVolerion

Mozilla Firefox and Thunderbird Memory Safety Vulnerability Allowing Potential Arbitrary Code Execution

Vulnerability

A vulnerability has been identified in Mozilla Firefox and Thunderbird applications, specifically in versions prior to 144, Firefox ESR versions prior to 115.29 and 140.4, and Thunderbird ESR versions prior to 144 and 140.4. This vulnerability arises from memory safety issues that could lead to memory corruption. While these issues were not directly exploitable, there is a presumption that, with sufficient effort, they could have been manipulated to execute arbitrary code.

Impact

Exploitation of this vulnerability could have led to arbitrary code execution.

Remediation

Users can upgrade to Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144 or Thunderbird ESR 140.4 to address this vulnerability.

Added: Oct 14, 2025, 1:28 PM
Updated: Oct 14, 2025, 11:42 PM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
2.5
exploitability
4.4
remediation
7.7
relevance
0.7
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.