CVE-2025-1414
First published: Tue Feb 18 2025(Updated: )
Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Firefox | <135.0.1 | |
| Firefox | <135.0.1 | 135.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-1414?
CVE-2025-1414 is a critical vulnerability that could potentially allow an attacker to run arbitrary code due to memory corruption in Firefox 135.
How do I fix CVE-2025-1414?
To fix CVE-2025-1414, users should update their Firefox browser to version 135.0.1 or later.
What versions of Firefox are affected by CVE-2025-1414?
CVE-2025-1414 affects Mozilla Firefox versions up to and including 135.0.1.
Can CVE-2025-1414 be exploited remotely?
Yes, CVE-2025-1414 could be exploited remotely by an attacker with sufficient knowledge and effort due to memory safety issues.
What type of vulnerability is CVE-2025-1414 categorized as?
CVE-2025-1414 is categorized as a memory safety bug that can lead to memory corruption.
- agent/type
- agent/references
- agent/description
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/weakness
- agent/author
- agent/source
- agent/last-modified-date
- agent/severity
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/mozilla-advisory
- source/Mozilla
- agent/softwarecombine
- vendor/mozilla
- canonical/firefox