CVE-2025-1010

EUVD-2025-1965
An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
mozillafirefox_esr
𝑥
< 115.20.0
mozillafirefox
𝑥
< 135.0
mozillafirefox_esr
128.1.0 ≤
𝑥
< 128.7.0
mozillathunderbird_esr
128.0.1 ≤
𝑥
< 128.7.0
mozillathunderbird
131.0 ≤
𝑥
< 135.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
firefox
sid
149.0.2-1
fixed
firefox-esr
bookworm
128.14.0esr-1~deb12u1
fixed
bookworm (security)
140.9.1esr-1~deb12u1
fixed
bullseye
vulnerable
bullseye (security)
140.9.1esr-1~deb11u1
fixed
forky
140.9.1esr-1
fixed
sid
140.9.1esr-1
fixed
trixie
140.8.0esr-1~deb13u1
fixed
trixie (security)
140.9.1esr-1~deb13u1
fixed
thunderbird
bookworm
1:140.6.0esr-1~deb12u1
fixed
bookworm (security)
1:140.9.1esr-1~deb12u1
fixed
bullseye
vulnerable
bullseye (security)
1:140.9.1esr-1~deb11u1
fixed
forky
1:140.9.0esr-1
fixed
sid
1:140.9.1esr-1
fixed
trixie
1:140.8.0esr-1~deb13u1
fixed
trixie (security)
1:140.9.1esr-1~deb13u1
fixed
Common Weakness Enumeration
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1936982
https://www.mozilla.org/security/advisories/mfsa2025-07/
https://www.mozilla.org/security/advisories/mfsa2025-08/
https://www.mozilla.org/security/advisories/mfsa2025-09/
https://www.mozilla.org/security/advisories/mfsa2025-10/
https://www.mozilla.org/security/advisories/mfsa2025-11/
https://lists.debian.org/debian-lts-announce/2025/02/msg00005.html
https://lists.debian.org/debian-lts-announce/2025/02/msg00006.html