<ul><li>Mozilla addressed two critical vulnerabilities in the Firefox browser that could have been exploited to access sensitive data or achieve code execution.</li><li>The vulnerabilities were demonstrated as zero-day flaws during the recent Pwn2Own Berlin 2025 hacking contest.</li><li>One vulnerability, CVE-2025-4918, involved an out-of-bounds access when resolving Promise objects.</li><li>The other vulnerability, CVE-2025-4919, pertained to an out-of-bounds access when optimizing linear sums.</li></ul>

Mozilla fixed zero-days recently demonstrated at Pwn2Own Berlin 2025

Discover more