Critical severity10.0NVD Advisory· Published Jun 19, 2023· Updated Jun 17, 2026
CVE-2019-25136
CVE-2019-25136
Description
A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<70+ 1 more
- (no CPE)range: <70
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- www.mozilla.org/security/advisories/mfsa2019-34/nvdVendor Advisory
- bugzilla.mozilla.org/show_bug.cginvdIssue Tracking
News mentions
0No linked articles in our index yet.