CVE-2025-8028Improper Handling of Faults that Lead to Instruction Skips in Mozilla Firefox

CWE-1332Improper Handling of Faults that Lead to Instruction Skips14 documents8 sources
Severity
9.8CRITICALNVD
EPSS
0.2%
top 60.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mozilla ThunderbirdMozilla Firefox
Timeline
PublishedJul 22
Latest updateFeb 2

Description

On arm64, a WASM `br_table` instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorrect computation of the branch address. This vulnerability was fixed in Firefox 141, Firefox ESR 115.26, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

NVDmozilla/firefox128.0128.13.0+3
NVDmozilla/thunderbird140.0140.1.0+2
Debianmozilla/thunderbird< 1:128.13.0esr-1~deb11u1+3

🔴Vulnerability Details

3
CVEList
Large branch table could lead to truncated instruction2025-07-22
OSV
CVE-2025-8028: On arm64, a WASM `br_table` instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorr2025-07-22
GHSA
GHSA-2fhm-pcv6-vcx9: On arm64, a WASM `br_table` instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorr2025-07-22

📋Vendor Advisories

10
Ubuntu
Thunderbird vulnerabilities2026-02-02
Red Hat
firefox: thunderbird: Large branch table could lead to truncated instruction2025-07-22
Debian
CVE-2025-8028: firefox - On arm64, a WASM `br_table` instruction with a lot of entries could lead to the ...2025
Mozilla
Mozilla Foundation Security Advisory 2025-62: CVE-2025-8028
Mozilla
Mozilla Foundation Security Advisory 2025-57: CVE-2025-8028
CVE-2025-8028 — Mozilla Firefox vulnerability | cvebase