Description
Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 139 and Thunderbird 139.
Published: 2025-05-27
Score: 7.3 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

This CVE describes memory safety bugs in Firefox 138 and Thunderbird 138 that can corrupt memory. The vendor notes that some bugs provided evidence of memory corruption and the possibility of arbitrary code execution with enough effort. The weaknesses correspond to buffer overflows (CWE-119) and out‑of‑bounds writes (CWE-787).

Affected Systems

Mozilla Firefox 138 and Mozilla Thunderbird 138 are affected. All installations of these products that have not been updated to version 139 or newer remain vulnerable. The vulnerability is specific to the Firefox and Thunderbird codebases.

Risk and Exploitability

The CVSS score is 7.3, indicating substantial severity. The EPSS score is below 1 %, suggesting that at the time of analysis the likelihood of exploitation was considered low. The vulnerability is not listed in the CISA KEV catalog. Exploitation would require an attacker to deliver crafted content to the application, such as a malicious web page or email, to trigger the memory corruption, which could in turn allow arbitrary code execution. No specific prerequisites beyond the vulnerable client are noted, so the attack could target any user of the affected versions.

Generated by OpenCVE AI on April 20, 2026 at 17:03 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to Firefox 139 or Thunderbird 139 as per vendor advisories.
  • Disable or uninstall any third‑party add‑ons that are not essential and run in privileged context, as they could be leveraged by memory corruption exploits.
  • Enable detailed logging for these applications and periodically review logs for signs of exploitation attempts.

Generated by OpenCVE AI on April 20, 2026 at 17:03 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-18103 Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 139 and Thunderbird < 139.
Ubuntu USN Ubuntu USN USN-7991-1 Thunderbird vulnerabilities
History

Mon, 13 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 139 and Thunderbird < 139. Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 139 and Thunderbird 139.

Thu, 30 Oct 2025 16:30:00 +0000

Type Values Removed Values Added
Title firefox: Memory safety bugs Memory safety bugs fixed in Firefox 139 and Thunderbird 139

Wed, 11 Jun 2025 12:15:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 139. Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 139 and Thunderbird < 139.
References

Wed, 28 May 2025 19:00:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
Mozilla thunderbird
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
Vendors & Products Mozilla
Mozilla firefox
Mozilla thunderbird

Wed, 28 May 2025 14:45:00 +0000

Type Values Removed Values Added
Title firefox: Memory safety bugs
Weaknesses CWE-119
References
Metrics threat_severity

None

 threat_severity

Moderate

Tue, 27 May 2025 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-787
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 27 May 2025 12:45:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 139.
References

Subscriptions

Mozilla Firefox Thunderbird
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T14:30:50.745Z

Reserved: 2025-05-27T12:29:29.796Z

Link: CVE-2025-5272

cve-icon Vulnrichment

Updated: 2025-05-27T15:05:43.847Z

cve-icon NVD

Status : Modified

Published: 2025-05-27T13:15:23.023

Modified: 2026-04-13T15:17:05.430

Link: CVE-2025-5272

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-05-27T12:29:30Z

Links: CVE-2025-5272 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T17:15:12Z

Weaknesses
  • CWE-119

    Improper Restriction of Operations within the Bounds of a Memory Buffer

  • CWE-787

    Out-of-bounds Write