Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-rela

BROWSER

FIREFOX

28-10-2025 14:27

CVE-2025-12380 Vulnerabilidad documentada

Sin puntuación

Tags

#web

#using

#db

#firefox

#browser

#vulnerability

#compromise

#affect

Descripción

Starting with Firefox 142, it was possible for a compromised child process to trigger use-after-free in the GPU or browser using WebGPU-related IPC calls. This may have been usable escape sandbox. vulnerability affects < 144.0.2.

https://bugzilla.mozilla.org/show_bug.cgi?id=1993113

https://www.mozilla.org/security/advisories/mfsa2025-86/

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-12380

Resultados similares

Coincidentes en almenos en 50% de los tags

28-10-2025 CVE-2025-9063
An authentication bypass security issue exists within FactoryTalk View Machine Edition Web Bro...
Ver información

28-10-2025
Chrome Zero-Day Exploited to Deliver Italian Memento Labs\' LeetAgent Spyware The zero-day ex...
Ver información