Back to search
CVE-2025-10527
Published: Sep 16, 2025
Modified: Apr 13, 2026
PUBLISHED
Description
Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3.
| Vendor | Product | Versions |
|---|---|---|
Mozilla | Firefox | unaffected 140.3 - <= 140.*unaffected 143 - <= * |
Mozilla | Thunderbird | unaffected 140.3 - <= 140.*unaffected 143 - <= * |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now