Privilege Escalation in Firefox and Firefox ESR by Mozilla
CVE-2025-14329

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox; Firefox Esr
Vendor: CVE Published:; 9 December 2025

What is CVE-2025-14329?

A vulnerability exists in the Netmonitor component of Firefox and Firefox ESR that allows an attacker to escalate privileges, potentially enabling unauthorized actions within the affected application. This issue affects various versions of Firefox before 146 and Firefox ESR prior to 140.6, requiring users to upgrade to secure their systems against possible exploitation.

Affected Version(s)

Firefox < 146

Firefox ESR < 140.6

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1997018

https://www.mozilla.org/security/advisories/mfsa2025-92/

https://www.mozilla.org/security/advisories/mfsa2025-94/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2025
Vulnerability Reserved
Dec 9, 2025

Credit

satrya wira yudha

JSON