WID-SEC-W-2025-2812 — Vulnetix

WID-SEC-W-2025-2812 PUBLISHED CVSS 9.300000190734863 CRITICAL

Firefox ist ein Open Source Web Browser. ESR ist die Variante mit verlängertem Support.

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
	Amazon Linux 2
	SUSE Linux
	SUSE openSUSE
	Mozilla Firefox ESR <115.31
	RESF Rocky Linux
	Mozilla Thunderbird 146
	Mozilla Thunderbird 140.6
	Ubuntu Linux
	Mozilla Firefox ESR 115.31
	Oracle Linux
	Mozilla Firefox ESR <140.6
	Red Hat Enterprise Linux
	Mozilla Firefox <146
	Debian Linux
	Mozilla Firefox ESR 140.6
	Mozilla Thunderbird <146
	Mozilla Firefox 146
	Mozilla Thunderbird <140.6

Exploit Intelligence

h3raklez/CVE-2025-14321 (github-poc-repo)
WostGit/cve-2025-14325-full-repro (github-poc-repo)
WostGit/cve-2025-14325-full-repro (github-poc)
h3raklez/CVE-2025-14321 (github-poc)
https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2812.json (circl)
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2812 (circl)
https://www.mozilla.org/en-US/security/advisories/mfsa2025-92/ (circl)
https://www.mozilla.org/en-US/security/advisories/mfsa2025-93/ (circl)
https://www.mozilla.org/en-US/security/advisories/mfsa2025-94/ (circl)
http://linux.oracle.com/errata/ELSA-2025-23035.html (circl)

…and 76 more exploits

Timeline

Dec 9, 2025 CVE Published
Feb 4, 2026 CVE Updated
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch

References

…and 61 more

Open in Interactive Console →

$ Console Community · 100/wk Open console ›