Description
Use-after-free in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 146 and Thunderbird 146.
Published: 2025-12-09
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

This vulnerability is a use‑after‑free condition located in the Audio/Video: GMP component. It allows memory corruption that could enable an attacker to replace privileged data structures, leading to arbitrary code execution or other destructive actions. The weakness is identified as CWE‑416, indicating improper handling of freed memory after an object's lifespan has ended.

Affected Systems

The affected products are Mozilla Firefox and Mozilla Thunderbird. Versions prior to 146 of each contain the flaw; versions 146 and newer have the fix applied.

Risk and Exploitability

The software risk rating is high with a CVSS score of 9.8. The EPSS indicates a <1% probability of exploitation, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the flaw can be triggered by processing a malicious media file, suggesting a remote attack vector from the network or local via compromised media files. The lack of explicit exploitation details leaves some uncertainty about the exact conditions necessary to exploit it, but the combination of high severity and low exploitation probability indicates that urgent mitigation is recommended.

Generated by OpenCVE AI on April 20, 2026 at 17:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Firefox to version 146 or later.
  • Update Thunderbird to version 146 or later.
  • If immediate updates are not possible, restrict or disable playback of media files from untrusted sources until a patch is applied.

Generated by OpenCVE AI on April 20, 2026 at 17:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 13 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Use-after-free in the Audio/Video: GMP component. This vulnerability affects Firefox < 146 and Thunderbird < 146. Use-after-free in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 146 and Thunderbird 146.

Thu, 11 Dec 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 10 Dec 2025 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla thunderbird
Weaknesses CWE-416
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*
Vendors & Products Mozilla thunderbird
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

 cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Wed, 10 Dec 2025 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
Vendors & Products Mozilla
Mozilla firefox

Wed, 10 Dec 2025 14:45:00 +0000

Type Values Removed Values Added
Description Use-after-free in the Audio/Video: GMP component. This vulnerability affects Firefox < 146. Use-after-free in the Audio/Video: GMP component. This vulnerability affects Firefox < 146 and Thunderbird < 146.
References

Wed, 10 Dec 2025 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

threat_severity

Moderate

Tue, 09 Dec 2025 13:45:00 +0000

Type Values Removed Values Added
Description Use-after-free in the Audio/Video: GMP component. This vulnerability affects Firefox < 146.
Title Use-after-free in the Audio/Video: GMP component
References

Subscriptions

Mozilla Firefox Thunderbird
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T14:28:03.973Z

Reserved: 2025-12-09T13:37:59.479Z

Link: CVE-2025-14326

cve-icon Vulnrichment

Updated: 2025-12-11T20:47:36.576Z

cve-icon NVD

Status : Modified

Published: 2025-12-09T16:17:40.120

Modified: 2026-04-13T15:16:45.783

Link: CVE-2025-14326

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-12-09T13:38:00Z

Links: CVE-2025-14326 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T17:45:12Z

Weaknesses