Mozilla has released Firefox 136.0.4 to patch a critical security vulnerability that can let attackers escape the web browser's sandbox on Windows systems. Tracked as CVE-2025-2857, this flaw is ...

Mozilla decided to have a look at its own sandbox, and on Thursday pushed out its own fix after Firefox engineers found a similar flaw in their own IPC plumbing. That hole, now tracked as ...

Kaspersky recently uncovered a zero-day vulnerability in Google Chrome Mozilla now says it has found a similar issue in Firefox The bug was used to target Russian targets in a cyber-espionage campaign ...

The attack, which exploits the flaw CVE-2025-2783 ... leaking handles into unprivileged child processes, leading to a sandbox escape.” The danger only affects Firefox users on Windows. The company ...

Updates are available for the Firefox web browser that close a security vulnerability classified as critical. Under Windows, it allows malicious actors to break out of the sandbox and thus inject ...

In a brief update, Mozilla said it updated the browser to Firefox version 136.0.4 after identifying and fixing the new bug, ...

The latest version of the browser, Firefox 3.6.2, was released as a free download for Windows, Mac and Linux platforms Tuesday. The update patches an existing zero-day flaw in 3.6 that could ...

The attack, which exploits the flaw CVE-2025-2783 ... leading to a sandbox escape.” The danger only affects Firefox users on Windows. The company issued patches via Firefox 136.0.4, Firefox ...

A scary zero-day attack against Google’s Chrome browser also works on Firefox, Mozilla warns. The attack, which exploits the flaw CVE-2025-2783, caused Google to rush out an emergency patch for ...