CVE-2025-4920

Published May 17, 2025

Last updated a month ago

Overview

Description: Rejected reason: Duplicate of CVE-2025-4918
Source: security@mozilla.org
NVD status: Rejected

Hype score: Not currently trending

Firefox 138.0.4で重大(Critical)な脆弱性2件が修正。ハッキングコンテストPwn2Own Berlin 2025で悪用されたもの。ESR版にも影響。CVE-2025-4920とCVE-2025-4921は双方とも境界外アクセス。 https://t.co/46UtjGloTG
@__kokumoto
18 May 2025
773 Impressions
1 Retweet
4 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-4920 An attacker was able to perform an out-of-bounds read or write on a JavaScript `Promise` object. This vulnerability affects Firefox < 138.0.4 and Firefox ESR < 128.10.1. https://t.co/Owfiv34eaO
@CVEnew
17 May 2025
479 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes

References

Sources include official advisories and independent security research.

https://nvd.nist.gov/vuln/detail/CVE-2025-4920