Description
Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1.
Published: 2025-07-22
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Potential Arbitrary Code Execution
Action: Patch Immediately
AI Analysis

Impact

Memory corruption bugs were identified in several builds of Mozilla Firefox and Thunderbird, including both regular and extended support editions. The faults allow an attacker to corrupt memory while the applications process data, and with sufficient effort could lead to arbitrary code execution. This would grant an attacker full control of the affected system, compromising confidentiality, integrity, and availability.

Affected Systems

Mozilla Firefox versions 115.26, 128.13, 140.1, 141 and earlier releases 115.25, 128.12, 140.0, 140 are affected. Mozilla Thunderbird versions 128.13, 140.1, 141 and earlier releases 128.12, 140.0, 140 are affected. Packages distributed for Red Hat Enterprise Linux 8, 9 and 10 also contain the vulnerable binaries, so systems running these distributions are at risk until updated.

Risk and Exploitability

The CVSS score of 8.8 classifies the flaw as high severity, indicating that exploitation can provide substantial damage. The EPSS score of less than 1% indicates a very low current exploitation probability, and the vulnerability is not listed in CISA’s KEV catalog. The weakness (CWE‑119) is a classic buffer overflow scenario that could be triggered by memory corruption. The likely attack vector is the presentation of malicious content to the browser or mail client, such as a compromised web page, email attachment, or add‑on. Based on the description, it is inferred that such remote or local content could be used to activate the memory corruption, but no publicly disclosed exploit is available at this time.

Generated by OpenCVE AI on April 20, 2026 at 22:10 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Firefox and Thunderbird to the latest patched releases (e.g., Firefox 141, ESR 140.1 and Thunderbird 141, ESR 140.1).
  • Ensure that any Red Hat Enterprise Linux 8/9/10 installations receive the updated Firefox and Thunderbird packages from the official repositories.
  • As an additional precaution, configure browsers to restrict script execution on unknown sites and disable add‑ons until they have been verified as safe.

Generated by OpenCVE AI on April 20, 2026 at 22:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4250-1 firefox-esr security update
Debian DLA Debian DLA DLA-4253-1 thunderbird security update
Debian DSA Debian DSA DSA-5964-1 firefox-esr security update
Debian DSA Debian DSA DSA-5966-1 thunderbird security update
EUVD EUVD EUVD-2025-22361 Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 141, Firefox ESR < 115.26, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1.
Ubuntu USN Ubuntu USN USN-7991-1 Thunderbird vulnerabilities
History

Mon, 13 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 141, Firefox ESR < 115.26, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1. Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1.

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Thu, 30 Oct 2025 16:15:00 +0000

Type Values Removed Values Added
Title firefox: thunderbird: Memory safety bugs Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141

Wed, 30 Jul 2025 17:30:00 +0000

Type Values Removed Values Added
References

Wed, 30 Jul 2025 17:00:00 +0000

Type Values Removed Values Added
References

Tue, 29 Jul 2025 12:30:00 +0000

Type Values Removed Values Added
Title firefox: thunderbird: Memory safety bugs
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:8
cpe:/a:redhat:enterprise_linux:9
cpe:/o:redhat:enterprise_linux:10.0
Vendors & Products Redhat
Redhat enterprise Linux
References
Metrics threat_severity

None

 threat_severity

Important

Mon, 28 Jul 2025 19:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*

Wed, 23 Jul 2025 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
Mozilla firefox Esr
Mozilla thunderbird
Vendors & Products Mozilla
Mozilla firefox
Mozilla firefox Esr
Mozilla thunderbird

Wed, 23 Jul 2025 14:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 22 Jul 2025 21:00:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 141, Firefox ESR < 115.26, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1.
References

Subscriptions

Mozilla Firefox Firefox Esr Thunderbird
Redhat Enterprise Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T14:27:08.421Z

Reserved: 2025-07-22T10:14:01.438Z

Link: CVE-2025-8034

cve-icon Vulnrichment

Updated: 2025-11-03T20:07:53.748Z

cve-icon NVD

Status : Modified

Published: 2025-07-22T21:15:50.560

Modified: 2026-04-13T15:17:10.217

Link: CVE-2025-8034

cve-icon Redhat

Severity : Important

Publid Date: 2025-07-22T20:49:27Z

Links: CVE-2025-8034 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T22:15:06Z

Weaknesses