vulnerability

FreeBSD: VID-c894635c-c0b6-11f0-ab42-b42e991fc52e (CVE-2025-13017): firefox -- Use-after-free

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:N)	Nov 13, 2025	Dec 10, 2025	Dec 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:N)

Published

Nov 13, 2025

Added

Dec 10, 2025

Modified

Dec 10, 2025

Description

https://bugzilla.mozilla.org/show_bug.cgi?id=1995686 reports: Use-after-free in the WebRTC: Audio/Video component. Same-origin policy bypass in the DOM: Workers component. Mitigation bypass in the DOM: Security component. Same-origin policy bypass in the DOM: Notifications component. Incorrect boundary conditions in the JavaScript: WebAssembly component. Spoofing issue in Firefox. Use-after-free in the Audio/Video component. Mitigation bypass in the DOM: Core and HTML component. Race condition in the Graphics component.

Solutions

freebsd-upgrade-package-firefoxfreebsd-upgrade-package-firefox-esr

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today