CVEs-PoC/2025/CVE-2025-4082.md

CVE-2025-4082

Description

Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when chained with other vulnerabilities, could be used to escalate privileges.This bug only affects Thunderbird for macOS. Other versions of Thunderbird are unaffected. This vulnerability affects Firefox < 138, Firefox ESR < 128.10, Firefox ESR < 115.23, Thunderbird < 138, and Thunderbird < 128.10.

POC

Reference

• https://bugzilla.mozilla.org/show_bug.cgi?id=1937097

Github

No PoCs found on GitHub currently.