Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2025-11152
CVE-2025-11152:
Mozilla Firefox vulnerability analysis and mitigation
Overview
A high-severity vulnerability (CVE-2025-11152) has been identified in the Graphics: Canvas2D component of Firefox, affecting Firefox version 143.0.3. The vulnerability was discovered by security researcher Oskar L and involves a sandbox escape due to an integer overflow issue (Mozilla Advisory).
Technical details
The vulnerability is characterized as a sandbox escape mechanism that exploits an integer overflow condition specifically within the Graphics: Canvas2D component of Firefox. The issue has been assigned a high severity rating by Mozilla, indicating its potential for significant security impact (Mozilla Advisory).
Impact
As a sandbox escape vulnerability, successful exploitation could allow an attacker to break out of Firefox's security sandbox, potentially leading to execution of arbitrary code with elevated privileges outside the browser's confined environment (Mozilla Advisory).
Mitigation and workarounds
Mozilla has addressed this vulnerability in Firefox version 143.0.3. Users are strongly advised to update to this version to protect against potential exploitation (Mozilla Advisory).
Additional resources
Source: This report was generated using AI
Related Mozilla Firefox vulnerabilities:
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management