CVE-2025-10533

Sažetak

Integer overflow in the SVG component. This vulnerability was fixed in Firefox 143, Firefox ESR 115.28, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3.

Reference

https://bugzilla.mozilla.org/show_bug.cgi?id=1980788
https://www.mozilla.org/security/advisories/mfsa2025-73/
https://www.mozilla.org/security/advisories/mfsa2025-74/
https://www.mozilla.org/security/advisories/mfsa2025-75/
https://www.mozilla.org/security/advisories/mfsa2025-77/
https://www.mozilla.org/security/advisories/mfsa2025-78/
https://lists.debian.org/debian-lts-announce/2025/09/msg00026.html

CVSS

Base:	8.8
Impact:	5.9
Exploitability:	2.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

13-04-2026 - 15:16

Objavljeno

16-09-2025 - 13:15