> While Mozilla didn't share technical details regarding CVE-2025-2857, it said the vulnerability is similar to a Chrome zero-day exploited in attacks and patched by Google earlier this week
So both Chrome and Firefox held something the wrong way, and it conveniently enabled bypassing sandbox in both cases. Very very interesting. What else might be affected?
> While Mozilla didn't share technical details regarding CVE-2025-2857, it said the vulnerability is similar to a Chrome zero-day exploited in attacks and patched by Google earlier this week
Related: Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain - https://news.ycombinator.com/item?id=43488841