- Description
- Memory safety bugs present in Firefox 139 and Thunderbird 139. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 140 and Thunderbird < 140.
- Source
- security@mozilla.org
- NVD status
- Modified
CVSS 3.1
- Type
- Secondary
- Base score
- 8.1
- Impact score
- 5.9
- Exploitability score
- 2.2
- Vector string
- CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-119
- Hype score
- Not currently trending
CVE-2025-6436: Memory safety bugs fixed in Firefox 140 and Thunderbird 140 https://t.co/lgJKgRxN2T https://t.co/BP6oVYjkpR https://t.co/SVEjiTpA82 https://t.co/t3ZjADBwDx https://t.co/Vj1ge5uf73 https://t.co/O5wc5SHM6i https://t.co/cK1BQ36NN3 https://t.co/7QRustieLI
@xvonfers
24 Jun 2025
930 Impressions
1 Retweet
5 Likes
6 Bookmarks
1 Reply
0 Quotes
CVE-2025-6436 Memory safety bugs present in Firefox 139 and Thunderbird 139. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of th… https://t.co/Op0xM7JRNG
@CVEnew
24 Jun 2025
322 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "77D2BF2A-26A3-4664-93B5-B41BCF17AC9E",
"versionEndExcluding": "140.0"
}
],
"operator": "OR"
}
]
}
]