CVE-2025-11152

Description

Sandbox escape due to integer overflow in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 143.0.3.

Base Score

8.6

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L

EPSS Score

Exploitation Probability

0.056

Vulnerability	OS Platform
Vulnerabilities CVE-2025-11152,CVE-2025-11153 are fixed in Mozilla Firefox (143.0.3)	Windows
Vulnerabilities CVE-2025-11152,CVE-2025-11153 are fixed in Mozilla Firefox (x64) (143.0.3)	Windows
Vulnerabilities CVE-2025-11152,CVE-2025-11153 are affected in Mozilla Firefox (x64) 143.0.2	Windows
Vulnerabilities CVE-2025-11152,CVE-2025-11153 are affected in Mozilla_Firefox 143.0.2	Windows
Vulnerabilities CVE-2025-11152,CVE-2025-11153 are fixed in Mozilla Firefox For Mac (143.0.3)	Mac

Click to see the patches provided by ManageEngine for this CVE