CVE-2025-4918 — Vulnetix

CVE-2025-4918 PUBLISHED

EPSS 0.99% · 77.3th percentile

Risk Scores

EPSS Score

0.99%

77.3th percentile

Affected Products

Vendor	Product	Versions
Amazon	thunderbird
Amazon	firefox

Exploit Intelligence

https://www.vicarius.io/vsociety/posts/cve-2025-4918-detect-firefox-out-of-bounds-write (nist-nvd)
https://www.vicarius.io/vsociety/posts/cve-2025-4918-mitigate-firefox-out-of-bounds-write (nist-nvd)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)
_18a_browser_cves_data.py (github-poc)

…and 2 more exploits

Timeline

May 17, 2025 CVE Published
May 18, 2025 EPSS Score
May 29, 2025 EPSS Score
Jun 10, 2025 EPSS Score
Jun 21, 2025 EPSS Score
Jul 2, 2025 EPSS Score
Jul 13, 2025 EPSS Score
Jul 25, 2025 EPSS Score
Aug 5, 2025 EPSS Score
Aug 16, 2025 EPSS Score
Aug 27, 2025 EPSS Score
Sep 8, 2025 EPSS Score

References

ALAS2-2025-2873: thunderbird (important) advisory
ALAS2FIREFOX-2025-039: firefox (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›