When you’re a Firefox consumer, it’s essential replace your browser. Mozilla has launched a safety patch for 2 zero-day vulnerabilities recognized on the current Pwn2Own hacker contest held in Berlin. Zero-days are vital safety flaws which were actively exploited or publicly disclosed earlier than an official repair is offered.
Browsers are targets for malware, and Firefox is not the one browser to find zero-day exploits in current days. Earlier this month, Google launched an emergency patch for Chrome to deal with a high-severity vulnerability (CVE-2025-4664) that permitted full account takeover—CISA later confirmed that this flaw was being actively exploited in assaults. (When you’re utilizing Chrome, you must take into account different privacy-focused browser alternate options anyway.)
Zero-days found in Firefox
Each zero-day exploits found at Pwn2Own Berlin are out-of-bounds flaws that enable attackers to learn or write information, probably getting access to delicate data or allowing code execution. CVE-2025-4918 permits learn or write on a JavaScript Promise object (a proxy worth for a course of that hasn’t been accomplished but) whereas CVE-2025-4919 permits learn or write on a JavaScript object (a set of “properties,” that are associations between keys and values).
CVE-2025-4918 was found by Edouard Bochin and Tao Yan from Palo Alto Networks, whereas CVE-2025-4919 was reported by Manfred Paul—every gained $50,000 for his or her hacks.
The following variations of Firefox are weak to those flaws and must be up to date:
What do you suppose thus far?
Whereas Mozilla was fast to deal with these flaws, the corporate notes that neither broke out of Firefox’s “sandbox,” which might be required with the intention to take management of a goal’s machine. That is a very good signal for Firefox’s total safety, as attackers at earlier Pwn2Own competitions efficiently broke out of the sandbox. Nonetheless, Mozilla recommends all customers set up the brand new patches as quickly as doable.
The best way to replace Firefox to the newest model
When you’re a Firefox consumer, make certain your browser is updated. You possibly can test which model you are on by going to Firefox > About Firefox. Click on the Restart to Replace Firefox button if it seems.
