Mozilla has released security updates to address two critical security flaws in its Firefox browser that could be potentially exploited to access sensitive data or achieve code execution.
The vulnerabilities, both of which were exploited as a zero-day at Pwn2Own Berlin, are listed below -

CVE-2025-4918 - An out-of-bounds access vulnerability when resolving Promise objects that could allow an



Source: TheHackerNews
Source Link: https://thehackernews.com/2025/05/firefox-patches-2-zero-days-exploited.html