Security Flaw in Firefox Browser Affecting Multiple Versions
CVE-2025-10528

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox; Firefox Esr; Thunderbird
Vendor: CVE Published:; 16 September 2025

What is CVE-2025-10528?

A security vulnerability has been identified in Firefox and Firefox ESR that could allow an attacker to execute malicious code. This flaw is present in Firefox versions earlier than 143 and Firefox ESR versions prior to 140.3. Users of affected versions may be at risk of exploitation, and it is highly recommended to update to the latest versions to ensure protection against potential threats. For more detailed information, refer to Mozilla's security advisories.

Affected Version(s)

Firefox < 143

Firefox ESR < 140.3

Thunderbird < 143

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1986185

https://www.mozilla.org/security/advisories/mfsa2025-73/

https://www.mozilla.org/security/advisories/mfsa2025-75/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025

Credit

Oskar L