- Description
- Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird < 135.
- Source
- security@mozilla.org
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- Hype score
- Not currently trending
New post from https://t.co/uXvPWJy6tj (CVE-2025-1016 | Mozilla Thunderbird up to 128.6/134.x memory corruption (Nessus ID 214965)) has been published on https://t.co/OZJkIjuFgJ
@WolfgangSesin
7 Feb 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New post from https://t.co/uXvPWJy6tj (CVE-2025-1016 | Mozilla Firefox up to 128.6/134.x memory corruption (Nessus ID 214965)) has been published on https://t.co/TKn8KJb9Oa
@WolfgangSesin
7 Feb 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 #Firefox, Memory Corruption Vulnerability #CVE-2025-1016 (Critical) https://t.co/mumR7gP208
@dailycve
6 Feb 2025
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-1016 Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed … https://t.co/WZwFZAnkRz
@CVEnew
4 Feb 2025
47 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D052B41-C615-4037-B188-59F57CDEFBF8",
"versionEndExcluding": "115.20.0"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C08017D5-BBC7-4E01-92D2-CE2E2ED9453A",
"versionEndExcluding": "135.0"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B58365E6-5BBF-44CA-97A6-502D35489964",
"versionEndExcluding": "128.7.0",
"versionStartIncluding": "128.1.0"
},
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0504330C-A82A-4E1E-9774-38CCB3DF8D92",
"versionEndExcluding": "128.7.0",
"versionStartIncluding": "128.0.1"
},
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5DC3260-2056-4C30-BCBA-AD45537FF0F5",
"versionEndExcluding": "135.0",
"versionStartIncluding": "131.0"
}
],
"operator": "OR"
}
]
}
]