Description
Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability was fixed in Firefox 137 and Thunderbird 137.
Published: 2025-04-01
Score: 7.4 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation via leaked file descriptors
Action: Apply Patches
AI Analysis

Impact

The vulnerability involves the fork server leaking file descriptors to web content processes. This defect permits an attacker to gain unauthorized access to privileged resources, potentially elevating privileges or executing malicious code. The weakness is an access control flaw that allows a less privileged process to read or manipulate file descriptors beyond its intended scope. The impact is a breach of confidentiality, integrity, and availability of system resources, with the ability to compromise the entire system if the attacker is on the same host.

Affected Systems

Mozilla Firefox and Mozilla Thunderbird are affected. The flaw has been fixed in Firefox version 137 and Thunderbird version 137. Earlier releases of these browsers remain vulnerable.

Risk and Exploitability

The CVSS score of 7.4 indicates a high severity vulnerability. EPSS indicates a very low probability of exploitation (< 1%) at the time of analysis, and the vulnerability is not currently listed in CISA KEV. The likely attack requires local access to the fork server, which can be reached by privileged web content processes. Without an exploit, remote attackers cannot leverage this flaw; however, a local attacker can use it to upgrade privileges and potentially hijack system resources.

Generated by OpenCVE AI on April 20, 2026 at 18:16 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Firefox to version 137 or newer
  • Update Thunderbird to version 137 or newer
  • Apply security updates regularly and monitor for unusual file descriptor activity

Generated by OpenCVE AI on April 20, 2026 at 18:16 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-9298 Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability affects Firefox < 137 and Thunderbird < 137.
Ubuntu USN Ubuntu USN USN-7991-1 Thunderbird vulnerabilities
History

Mon, 13 Apr 2026 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

 ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 13 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability affects Firefox < 137 and Thunderbird < 137. Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability was fixed in Firefox 137 and Thunderbird 137.
Title thunderbird: firefox: Leaking file descriptors from the fork server Leaking file descriptors from the fork server

Mon, 07 Apr 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
Mozilla thunderbird
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
Vendors & Products Mozilla
Mozilla firefox
Mozilla thunderbird

Wed, 02 Apr 2025 02:15:00 +0000

Type Values Removed Values Added
Title thunderbird: firefox: Leaking file descriptors from the fork server
Weaknesses CWE-497
References
Metrics threat_severity

None

 threat_severity

Moderate

Tue, 01 Apr 2025 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-403
Metrics cvssV3_1

{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 01 Apr 2025 12:45:00 +0000

Type Values Removed Values Added
Description Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability affects Firefox < 137 and Thunderbird < 137.
References

Subscriptions

Mozilla Firefox Thunderbird
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T14:29:30.510Z

Reserved: 2025-03-31T09:35:27.921Z

Link: CVE-2025-3032

cve-icon Vulnrichment

Updated: 2025-04-01T18:37:13.590Z

cve-icon NVD

Status : Modified

Published: 2025-04-01T13:15:41.587

Modified: 2026-04-13T15:16:56.993

Link: CVE-2025-3032

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-04-01T12:29:03Z

Links: CVE-2025-3032 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T18:30:13Z

Weaknesses