Firefox and Chrome Patch Critical Sandbox Escape Vulnerabilities

Google and Mozilla address security flaws exploited in targeted attacks, urging users to update their browsers immediately.

Google patched a critical Chrome vulnerability (CVE-2025-2783) exploited in 'Operation ForumTroll,' targeting Russian media, government, and educational institutions.
Mozilla identified and fixed a similar vulnerability (CVE-2025-2857) in Firefox after analyzing the Chrome exploit, with the issue affecting only Windows systems.
The Tor browser, based on Firefox, issued an emergency Windows-only update to address the CVE-2025-2857 flaw.
Both vulnerabilities allowed attackers to bypass browser sandbox protections, highlighting shared security challenges across platforms.
Users are strongly advised to update their browsers to the latest versions to mitigate risks from these critical vulnerabilities.