Mozilla has released Firefox 136.0.4 to patch a critical security vulnerability that can let attackers escape the web browser's sandbox on Windows systems. Tracked as CVE-2025-2857, this flaw is ...

The attack, which exploits the flaw CVE-2025-2783 ... leading to a sandbox escape.” The danger only affects Firefox users on Windows. The company issued patches via Firefox 136.0.4, Firefox ...

In a security advisory published on March 27, 2025, Mozilla said after the discovery of the Chrome sandbox escape vulnerability ... that the bug affects Firefox on Windows, and that other ...

Updates are available for the Firefox web browser that close a security vulnerability classified as critical. Under Windows, it allows malicious actors to break out of the sandbox and thus inject ...

In a brief update, Mozilla said it updated the browser to Firefox version 136.0.4 after identifying and fixing the new bug, ...

The latest version of the browser, Firefox 3.6.2, was released as a free download for Windows, Mac and Linux platforms Tuesday. The update patches an existing zero-day flaw in 3.6 that could ...

In addition to Firefox 3.0, the security flaw also affects previous versions of Firefox 2.0x. According to the company's Zero-Day Initiative Website, TippingPoint has already contacted Mozilla ...

The finding is surprising since Firefox uses a different browser engine. But it looks like the flaw relates more to how browsers communicate with the Windows OS.