CVE-2025-2857

Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was being exploited in the wild. *This only affects Firefox on Windows. Other operating systems are unaffected.* This vulnerability affects Firefox < 136.0.4, Firefox ESR < 128.8.1, and Firefox ESR < 115.21.1.

CVSS

No CVSS.

References

Link	Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1956398	Permissions Required
https://issues.chromium.org/issues/405143032	Permissions Required
https://www.cve.org/CVERecord?id=CVE-2025-2783	Third Party Advisory
https://www.mozilla.org/security/advisories/mfsa2025-19/	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:a:mozilla:firefox:::::esr:::*
	cpe:2.3:a:mozilla:firefox:::::esr:::*

History

01 May 2025, 19:31

Type	Values Removed	Values Added
CWE		NVD-CWE-noinfo
First Time		Mozilla firefox Mozilla
CPE		cpe:2.3:a:mozilla:firefox:::::esr:::* cpe:2.3:a:mozilla:firefox:::::-:::*
References	~~() https://bugzilla.mozilla.org/show_bug.cgi?id=1956398 -~~	() https://bugzilla.mozilla.org/show_bug.cgi?id=1956398 - Permissions Required
References	~~() https://www.mozilla.org/security/advisories/mfsa2025-19/ -~~	() https://www.mozilla.org/security/advisories/mfsa2025-19/ - Vendor Advisory
References	~~() https://issues.chromium.org/issues/405143032 -~~	() https://issues.chromium.org/issues/405143032 - Permissions Required
References	~~() https://www.cve.org/CVERecord?id=CVE-2025-2783 -~~	() https://www.cve.org/CVERecord?id=CVE-2025-2783 - Third Party Advisory

27 Mar 2025, 20:15

Type	Values Removed	Values Added
Summary	Following the sandbox escape in CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC code. Attackers were able to confuse the parent process into leaking handles to unprivileged child processes leading to a sandbox escape. The original vulnerability was being exploited in the wild. This only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects Firefox < 136.0.4, Firefox ESR < 128.8.1, and Firefox ESR < 115.21.1.	Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was being exploited in the wild. This only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects Firefox < 136.0.4, Firefox ESR < 128.8.1, and Firefox ESR < 115.21.1.
References		() https://www.cve.org/CVERecord?id=CVE-2025-2783 -

27 Mar 2025, 15:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-27 14:15

Updated : 2025-05-01 19:31

NVD link : CVE-2025-2857

Mitre link : CVE-2025-2857

JSON object : View

Products Affected

mozilla

firefox

CWE

NVD-CWE-noinfo

JSON object

Attach tags to CVE-2025-2857

Attach tags to `CVE-2025-2857`