CVE-2025-0240

Published: 2025-01-07T16:15Z

Last Modified: 2025-04-03T16:29Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt