CVE-2025-1933
published 2025-03-04CVE-2025-1933: On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a…
high7.6CVSS 3.1
AVNACLPRNUIRSUCLILAH
On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 136.0-1 (sid) | firefox 136.0-1 (sid) |
| debian | firefox-esr | < firefox 136.0-1 (sid) | firefox 136.0-1 (sid) |
| debian | thunderbird | < firefox 136.0-1 (sid) | firefox 136.0-1 (sid) |
| mozilla | firefox | < 115.21.0 | 115.21.0 |
| mozilla | firefox | < 136.0 | 136.0 |
| mozilla | firefox | — | — |
| mozilla | firefox | >= 0 < 136.0+build3-0ubuntu0.20.04.1 | 136.0+build3-0ubuntu0.20.04.1 |
| mozilla | firefox | >= 116.0 < 128.8.0 | 128.8.0 |
| mozilla | thunderbird | < 128.8 | 128.8 |
| mozilla | thunderbird | >= 0 < 1:128.8.0esr-1~deb11u1 | 1:128.8.0esr-1~deb11u1 |
| mozilla | thunderbird | >= 0 < 1:128.8.0esr-1~deb12u1 | 1:128.8.0esr-1~deb12u1 |
| mozilla | thunderbird | >= 0 < 1:128.8.0esr-1 | 1:128.8.0esr-1 |
| mozilla | thunderbird | >= 0 < 1:128.8.0esr-1 | 1:128.8.0esr-1 |
| mozilla | thunderbird | >= 129.0 < 136.0 | 136.0 |
CVSS provenance
nvdv3.17.6HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
osv7.6HIGH