Google and Mozilla released Chrome 137 and Firefox 139, with patches for a total of 21 vulnerabilities between the two browsers.

and on Thursday pushed out its own fix after Firefox engineers found a similar flaw in their own IPC plumbing. That hole, now tracked as CVE-2025-2857, also allowed sandbox escapes on Windows.

leading to a sandbox escape.” The flaw primarily impacts Firefox users on Windows. Mozilla responded swiftly by issuing security patches for affected versions, including Firefox 136.0.4 ...

In a security advisory published on March 27, 2025, Mozilla said after the discovery of the Chrome sandbox escape vulnerability ... that the bug affects Firefox on Windows, and that other ...

leading to a sandbox escape”, Firefox developers said. In the case of Firefox, the vulnerability is tracked as CVE-2025-2857. The flaw only impacts Firefox for Windows and it has been patched with the ...

Mozilla has released updates to address a critical security flaw impacting its Firefox browser for Windows, merely days after Google ... as a case of an incorrect handle that could lead to a sandbox ...

Mozilla has released Firefox 136.0.4 to patch a critical security vulnerability that can let attackers escape the web browser's sandbox on Windows systems. Tracked as CVE-2025-2857, this flaw is ...

The attack, which exploits the flaw CVE-2025-2783, caused Google to rush out an emergency patch for Chrome users on Windows ... the sandbox escape in CVE-2025-2783, various Firefox developers ...

Last September, Mozilla announced that it would extend support for Firefox on older Windows operating systems until March of this year. Now, the company has updated its release calendar ...

The latest attacks were launched via rogue website redirects against users of Firefox ... process sandbox, the RomCom attack exploited another previously unknown vulnerability in the Windows ...