Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-12380

Опубликовано: 28 окт. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 9.8

Описание

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability affects Firefox < 144.0.2.

РелизСтатусПримечание
devel

not-affected

code not present
jammy

not-affected

code not present
noble

not-affected

code not present
plucky

not-affected

code not present
questing

not-affected

code not present
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

code not present
jammy

not-affected

code not present
noble

not-affected

code not present
plucky

not-affected

code not present
questing

not-affected

code not present
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 19%
0.00059
Низкий

9.8 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-12380

CVSS3: 9.8
nvd
3 месяца назад

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability affects Firefox < 144.0.2.

debian логотип

CVE-2025-12380

CVSS3: 9.8
debian
3 месяца назад

Starting with Firefox 142, it was possible for a compromised child pro ...

github логотип

GHSA-mmmm-6m78-44q2

CVSS3: 9.8
github
3 месяца назад

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability affects Firefox < 144.0.2.

fstec логотип

BDU:2025-14537

CVSS3: 9.6
fstec
3 месяца назад

Уязвимость браузера Mozilla Firefox, связанная с возможностью использования памяти после освобождения, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 19%
0.00059
Низкий

9.8 Critical

CVSS3