Important: firefox

🗓️ 11 Jun 2025 00:00:00Reported by AmazonType

amazon

amazon🔗 alas.aws.amazon.com👁 1 Views

Multiple Firefox flaws allow out-of-bounds reads/writes, leaks, curl abuse, and clickjacking.

Reporter	Title	Published	Views	Family All 1106
FreeBSD	firefox -- out-of-bounds read/write	17 May 202500:00	–	freebsd
FreeBSD	chromium -- multiple security fixes	27 May 202500:00	–	freebsd
FreeBSD	Mozilla -- cross-origin leak attack	27 May 202500:00	–	freebsd
FreeBSD	Mozilla -- local code execution	27 May 202500:00	–	freebsd
FreeBSD	Mozilla -- XS-leak attack	27 May 202500:00	–	freebsd
FreeBSD	Mozilla -- clickjacking vulnerability	27 May 202500:00	–	freebsd
FreeBSD	Mozilla -- Memory safety bugs	27 May 202500:00	–	freebsd
FreeBSD	Mozilla -- memory corruption	27 May 202500:00	–	freebsd
FreeBSD	qt6-webengine -- Multiple vulnerabilities	27 May 202500:00	–	freebsd
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM includes components with known vulnerabilities	15 Jul 202515:21	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	2	aarch64	firefox	128.11.0-1.amzn2.0.1	firefox-128.11.0-1.amzn2.0.1.aarch64.rpm
Amazon Linux	2	x86_64	firefox	128.11.0-1.amzn2.0.1	firefox-128.11.0-1.amzn2.0.1.x86_64.rpm
Amazon Linux	2	aarch64	firefox-debuginfo	128.11.0-1.amzn2.0.1	firefox-debuginfo-128.11.0-1.amzn2.0.1.aarch64.rpm
Amazon Linux	2	x86_64	firefox-debuginfo	128.11.0-1.amzn2.0.1	firefox-debuginfo-128.11.0-1.amzn2.0.1.x86_64.rpm

11 Jun 2025 00:00Current

8.1High risk

Vulners AI Score8.1

CVSS 3.19.8

EPSS0.00994

SSVC

Out of bounds Promise object Cross origin leaks Copy as curl Escape newline Escape ampersand Clickjacking Memory safety bugs