Vulnerability-Lookup

WID-SEC-W-2026-1606

Vulnerability from csaf_certbund - Published: 2026-05-19 22:00 - Updated: 2026-05-20 22:00

Summary

Mozilla Firefox und Thunderbird: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Firefox ist ein Open Source Web Browser. ESR ist die Variante mit verlängertem Support. Thunderbird ist ein Open Source E-Mail Client.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Mozilla Firefox, Mozilla Firefox ESR und Mozilla Thunderbird ausnutzen, um beliebigen Code auszuführen, um Informationen offenzulegen, Sicherheitsbeschränkungen zu umgehen (z. B. Sandbox-Escape), den Benutzer zu täuschen, Berechtigungen zu eskalieren oder einen Denial-of-Service-Zustand herbeizuführen.

Betroffene Betriebssysteme: - Android - iPhoneOS - Linux - MacOS X - Windows

CVE-2026-8388

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8391

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8401

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8706

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8945

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8946

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8947

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8948

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8949

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8950

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8951

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8952

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8953

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8954

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8955

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8956

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8957

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8958

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8959

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8960

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8961

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8962

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8963

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8964

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8965

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8966

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8967

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8968

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8969

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8970

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8971

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8972

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8973

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8974

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

CVE-2026-8975

Affected products

Known affected 7 products

Product	Identifier	Version
Mozilla Thunderbird <151 Mozilla / Thunderbird		<151
Mozilla Firefox ESR <140.11 Mozilla / Firefox ESR		<140.11
Mozilla Firefox ESR <115.36 Mozilla / Firefox ESR		<115.36
Mozilla Firefox <151 Mozilla / Firefox		<151
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Mozilla Thunderbird <140.11 Mozilla / Thunderbird		<140.11

References

11 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.mozilla.org/en-US/security/advisories…	external
https://www.mozilla.org/en-US/security/advisories…	external
https://www.mozilla.org/en-US/security/advisories…	external
https://www.mozilla.org/en-US/security/advisories…	external
https://www.mozilla.org/en-US/security/advisories…	external
https://www.mozilla.org/en-US/security/advisories…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.debian.org/debian-lts-announce/2026…	external
https://lists.debian.org/debian-security-announce…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Firefox ist ein Open Source Web Browser. \r\nESR ist die Variante mit verl\u00e4ngertem Support.\r\nThunderbird ist ein Open Source E-Mail Client.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Mozilla Firefox, Mozilla Firefox ESR und Mozilla Thunderbird ausnutzen, um beliebigen Code auszuf\u00fchren, um Informationen offenzulegen, Sicherheitsbeschr\u00e4nkungen zu umgehen (z. B. Sandbox-Escape), den Benutzer zu t\u00e4uschen, Berechtigungen zu eskalieren oder einen Denial-of-Service-Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Android\n- iPhoneOS\n- Linux\n- MacOS X\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1606 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1606.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1606 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1606"
      },
      {
        "category": "external",
        "summary": "Mozilla Security Advisory mfsa2026-46 vom 2026-05-19",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-46/"
      },
      {
        "category": "external",
        "summary": "Mozilla Security Advisory mfsa2026-47 vom 2026-05-19",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-47/"
      },
      {
        "category": "external",
        "summary": "Mozilla Security Advisory mfsa2026-48 vom 2026-05-19",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/"
      },
      {
        "category": "external",
        "summary": "Mozilla Security Advisory mfsa2026-49 vom 2026-05-19",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-49/"
      },
      {
        "category": "external",
        "summary": "Mozilla Security Advisory mfsa2026-50 vom 2026-05-19",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-50/"
      },
      {
        "category": "external",
        "summary": "Mozilla Security Advisory mfsa2026-51 vom 2026-05-19",
        "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:10813-1 vom 2026-05-20",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N4PBMNGPCFVXRJKTYWURGMAHKO2FKQDE/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4592 vom 2026-05-20",
        "url": "https://lists.debian.org/debian-lts-announce/2026/05/msg00037.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6283 vom 2026-05-20",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00194.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Mozilla Firefox und Thunderbird: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-05-20T22:00:00.000+00:00",
      "generator": {
        "date": "2026-05-21T07:35:42.012+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1606",
      "initial_release_date": "2026-05-19T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-05-19T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-05-20T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von openSUSE und Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c151",
                "product": {
                  "name": "Mozilla Firefox \u003c151",
                  "product_id": "T054362"
                }
              },
              {
                "category": "product_version",
                "name": "151",
                "product": {
                  "name": "Mozilla Firefox 151",
                  "product_id": "T054362-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:firefox:151"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Firefox"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c115.36",
                "product": {
                  "name": "Mozilla Firefox ESR \u003c115.36",
                  "product_id": "T054363"
                }
              },
              {
                "category": "product_version",
                "name": "115.36",
                "product": {
                  "name": "Mozilla Firefox ESR 115.36",
                  "product_id": "T054363-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:firefox_esr:115.36"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c140.11",
                "product": {
                  "name": "Mozilla Firefox ESR \u003c140.11",
                  "product_id": "T054364"
                }
              },
              {
                "category": "product_version",
                "name": "140.11",
                "product": {
                  "name": "Mozilla Firefox ESR 140.11",
                  "product_id": "T054364-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:firefox_esr:140.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Firefox ESR"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c151",
                "product": {
                  "name": "Mozilla Thunderbird \u003c151",
                  "product_id": "T054365"
                }
              },
              {
                "category": "product_version",
                "name": "151",
                "product": {
                  "name": "Mozilla Thunderbird 151",
                  "product_id": "T054365-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:thunderbird:151"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c140.11",
                "product": {
                  "name": "Mozilla Thunderbird \u003c140.11",
                  "product_id": "T054366"
                }
              },
              {
                "category": "product_version",
                "name": "140.11",
                "product": {
                  "name": "Mozilla Thunderbird 140.11",
                  "product_id": "T054366-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mozilla:thunderbird:140.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Thunderbird"
          }
        ],
        "category": "vendor",
        "name": "Mozilla"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-8388",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8388"
    },
    {
      "cve": "CVE-2026-8391",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8391"
    },
    {
      "cve": "CVE-2026-8401",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8401"
    },
    {
      "cve": "CVE-2026-8706",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8706"
    },
    {
      "cve": "CVE-2026-8945",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8945"
    },
    {
      "cve": "CVE-2026-8946",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8946"
    },
    {
      "cve": "CVE-2026-8947",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8947"
    },
    {
      "cve": "CVE-2026-8948",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8948"
    },
    {
      "cve": "CVE-2026-8949",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8949"
    },
    {
      "cve": "CVE-2026-8950",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8950"
    },
    {
      "cve": "CVE-2026-8951",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8951"
    },
    {
      "cve": "CVE-2026-8952",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8952"
    },
    {
      "cve": "CVE-2026-8953",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8953"
    },
    {
      "cve": "CVE-2026-8954",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8954"
    },
    {
      "cve": "CVE-2026-8955",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8955"
    },
    {
      "cve": "CVE-2026-8956",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8956"
    },
    {
      "cve": "CVE-2026-8957",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8957"
    },
    {
      "cve": "CVE-2026-8958",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8958"
    },
    {
      "cve": "CVE-2026-8959",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8959"
    },
    {
      "cve": "CVE-2026-8960",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8960"
    },
    {
      "cve": "CVE-2026-8961",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8961"
    },
    {
      "cve": "CVE-2026-8962",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8962"
    },
    {
      "cve": "CVE-2026-8963",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8963"
    },
    {
      "cve": "CVE-2026-8964",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8964"
    },
    {
      "cve": "CVE-2026-8965",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8965"
    },
    {
      "cve": "CVE-2026-8966",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8966"
    },
    {
      "cve": "CVE-2026-8967",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8967"
    },
    {
      "cve": "CVE-2026-8968",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8968"
    },
    {
      "cve": "CVE-2026-8969",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8969"
    },
    {
      "cve": "CVE-2026-8970",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8970"
    },
    {
      "cve": "CVE-2026-8971",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8971"
    },
    {
      "cve": "CVE-2026-8972",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8972"
    },
    {
      "cve": "CVE-2026-8973",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8973"
    },
    {
      "cve": "CVE-2026-8974",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8974"
    },
    {
      "cve": "CVE-2026-8975",
      "product_status": {
        "known_affected": [
          "T054365",
          "T054364",
          "T054363",
          "T054362",
          "2951",
          "T027843",
          "T054366"
        ]
      },
      "release_date": "2026-05-19T22:00:00.000+00:00",
      "title": "CVE-2026-8975"
    }
  ]
}

CVE-2026-8388 (GCVE-0-2026-8388)

Vulnerability from cvelistv5 – Published: 2026-05-12 12:36 – Updated: 2026-05-19 17:10

Title

Incorrect boundary conditions in the JavaScript Engine: JIT component

Summary

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Assigner

mozilla

References

5 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2036978
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 115.36 , ≤ 115.* (rpm) Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 150.0.3 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ * (rpm)

Credits

ggwhyp

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 6.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8388",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-12T18:28:57.252588Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-119",
                "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-12T18:29:06.860Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "115.*",
              "status": "unaffected",
              "version": "115.36",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "150.0.3",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "ggwhyp"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11."
            }
          ],
          "value": "Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:46.244Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2036978"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-45/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-47/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Incorrect boundary conditions in the JavaScript Engine: JIT component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8388",
    "datePublished": "2026-05-12T12:36:10.633Z",
    "dateReserved": "2026-05-12T12:36:09.855Z",
    "dateUpdated": "2026-05-19T17:10:46.244Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8391 (GCVE-0-2026-8391)

Vulnerability from cvelistv5 – Published: 2026-05-12 12:36 – Updated: 2026-05-19 17:10

Title

Other issue in the JavaScript Engine component

Summary

Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.

Severity

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE

CWE-20 - Improper Input Validation
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Assigner

mozilla

References

5 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2038575
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 115.36 , ≤ 115.* (rpm) Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 150.0.3 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ * (rpm)

Credits

ggwhyp

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8391",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-13T15:47:19.047188Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-20",
                "description": "CWE-20 Improper Input Validation",
                "lang": "en",
                "type": "CWE"
              }
            ]
          },
          {
            "descriptions": [
              {
                "cweId": "CWE-79",
                "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          },
          {
            "descriptions": [
              {
                "cweId": "CWE-119",
                "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-13T15:47:30.418Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "115.*",
              "status": "unaffected",
              "version": "115.36",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "150.0.3",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "ggwhyp"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11."
            }
          ],
          "value": "Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:47.079Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2038575"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-45/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-47/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Other issue in the JavaScript Engine component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8391",
    "datePublished": "2026-05-12T12:36:15.548Z",
    "dateReserved": "2026-05-12T12:36:14.816Z",
    "dateUpdated": "2026-05-19T17:10:47.079Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8401 (GCVE-0-2026-8401)

Vulnerability from cvelistv5 – Published: 2026-05-12 14:24 – Updated: 2026-05-19 17:10

Title

Sandbox escape in the Profile Backup component

Summary

Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.

Severity

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-693 - Protection Mechanism Failure

Assigner

mozilla

References

5 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2038679
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 115.36 , ≤ 115.* (rpm) Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 150.0.3 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ * (rpm)

Credits

ggwhyp

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.8,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8401",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-14T16:46:22.547730Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-693",
                "description": "CWE-693 Protection Mechanism Failure",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-14T19:54:10.869Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "115.*",
              "status": "unaffected",
              "version": "115.36",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "150.0.3",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "ggwhyp"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11."
            }
          ],
          "value": "Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:47.433Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2038679"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-45/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-47/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Sandbox escape in the Profile Backup component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8401",
    "datePublished": "2026-05-12T14:24:33.320Z",
    "dateReserved": "2026-05-12T14:19:41.837Z",
    "dateUpdated": "2026-05-19T17:10:47.433Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8706 (GCVE-0-2026-8706)

Vulnerability from cvelistv5 – Published: 2026-05-19 14:27 – Updated: 2026-05-19 17:12

Title

Sensitive user data could be leaked to other applications through Reader mode

Summary

Firefox for iOS hosted Reader mode on an unauthenticated local web server, allowing another application on the same device to request arbitrary URLs and receive the response rendered with the signed-in user's cookies. This vulnerability was fixed in Firefox for iOS 151.0.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-306 - Missing Authentication for Critical Function
CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Assigner

mozilla

References

2 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2036618
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

1 product

Vendor	Product	Version
Mozilla	Firefox for iOS	Unaffected: 151.0 , ≤ * (rpm)

Credits

Muneaki Nishimura

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "ADJACENT_NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 6.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8706",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T15:57:56.872624Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-306",
                "description": "CWE-306 Missing Authentication for Critical Function",
                "lang": "en",
                "type": "CWE"
              }
            ]
          },
          {
            "descriptions": [
              {
                "cweId": "CWE-200",
                "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T17:12:23.626Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox for iOS",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151.0",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Muneaki Nishimura"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Firefox for iOS hosted Reader mode on an unauthenticated local web server, allowing another application on the same device to request arbitrary URLs and receive the response rendered with the signed-in user\u0027s cookies. This vulnerability was fixed in Firefox for iOS 151.0."
            }
          ],
          "value": "Firefox for iOS hosted Reader mode on an unauthenticated local web server, allowing another application on the same device to request arbitrary URLs and receive the response rendered with the signed-in user\u0027s cookies. This vulnerability was fixed in Firefox for iOS 151.0."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T14:27:38.483Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2036618"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-49/"
        }
      ],
      "title": "Sensitive user data could be leaked to other applications through Reader mode"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8706",
    "datePublished": "2026-05-19T14:27:38.483Z",
    "dateReserved": "2026-05-15T19:32:40.967Z",
    "dateUpdated": "2026-05-19T17:12:23.626Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8945 (GCVE-0-2026-8945)

Vulnerability from cvelistv5 – Published: 2026-05-19 12:29 – Updated: 2026-05-19 15:12

Title

Sandbox escape in Firefox and Firefox Focus for Android

Summary

Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 151.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-693 - Protection Mechanism Failure

Assigner

mozilla

References

2 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2003171
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

1 product

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 151 , ≤ * (rpm)

Credits

Daisuke Hatakeyama

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8945",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T15:11:15.996310Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-693",
                "description": "CWE-693 Protection Mechanism Failure",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T15:12:07.561Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Daisuke Hatakeyama"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 151."
            }
          ],
          "value": "Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox 151."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T12:29:34.775Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2003171"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-46/"
        }
      ],
      "title": "Sandbox escape in Firefox and Firefox Focus for Android"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8945",
    "datePublished": "2026-05-19T12:29:34.775Z",
    "dateReserved": "2026-05-19T12:29:34.019Z",
    "dateUpdated": "2026-05-19T15:12:07.561Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8946 (GCVE-0-2026-8946)

Vulnerability from cvelistv5 – Published: 2026-05-19 12:29 – Updated: 2026-05-19 17:10

Title

Incorrect boundary conditions in the Audio/Video: Web Codecs component

Summary

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Assigner

mozilla

References

6 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2029070
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 115.36 , ≤ 115.* (rpm) Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)

Credits

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8946",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T14:09:24.484354Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-119",
                "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T14:11:28.645Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "115.*",
              "status": "unaffected",
              "version": "115.36",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "zx"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
            }
          ],
          "value": "Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:45.651Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2029070"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-46/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-47/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-50/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Incorrect boundary conditions in the Audio/Video: Web Codecs component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8946",
    "datePublished": "2026-05-19T12:29:36.254Z",
    "dateReserved": "2026-05-19T12:29:35.532Z",
    "dateUpdated": "2026-05-19T17:10:45.651Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8947 (GCVE-0-2026-8947)

Vulnerability from cvelistv5 – Published: 2026-05-19 12:29 – Updated: 2026-05-19 17:10

Title

Use-after-free in the DOM: Bindings (WebIDL) component

Summary

Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.

Severity

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-416 - Use After Free

Assigner

mozilla

References

6 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2038439
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 115.36 , ≤ 115.* (rpm) Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)

Credits

Satoki Tsuji

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "LOW",
              "baseScore": 7.3,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8947",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T14:14:49.904157Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T14:15:12.387Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "115.*",
              "status": "unaffected",
              "version": "115.36",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Satoki Tsuji"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
            }
          ],
          "value": "Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:46.663Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2038439"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-46/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-47/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-50/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Use-after-free in the DOM: Bindings (WebIDL) component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8947",
    "datePublished": "2026-05-19T12:29:37.800Z",
    "dateReserved": "2026-05-19T12:29:37.072Z",
    "dateUpdated": "2026-05-19T17:10:46.663Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8948 (GCVE-0-2026-8948)

Vulnerability from cvelistv5 – Published: 2026-05-19 12:29 – Updated: 2026-05-19 17:10

Title

Same-origin policy bypass in the DOM: Networking component

Summary

Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.

Severity

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE

CWE-942 - Permissive Cross-domain Policy with Untrusted Domains

Assigner

mozilla

References

3 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=2038803
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 151 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 151 , ≤ * (rpm)

Credits

satyamasd

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 9.1,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8948",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T16:40:44.630280Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-942",
                "description": "CWE-942 Permissive Cross-domain Policy with Untrusted Domains",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T16:42:32.190Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "satyamasd"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151."
            }
          ],
          "value": "Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:52.773Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2038803"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-46/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-50/"
        }
      ],
      "title": "Same-origin policy bypass in the DOM: Networking component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8948",
    "datePublished": "2026-05-19T12:29:39.355Z",
    "dateReserved": "2026-05-19T12:29:38.570Z",
    "dateUpdated": "2026-05-19T17:10:52.773Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8949 (GCVE-0-2026-8949)

Vulnerability from cvelistv5 – Published: 2026-05-19 12:29 – Updated: 2026-05-19 17:10

Title

Integer overflow in the Widget: Win32 component

Summary

Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-190 - Integer Overflow or Wraparound

Assigner

mozilla

References

5 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=1355639
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)

Credits

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8949",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T14:05:21.233477Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-190",
                "description": "CWE-190 Integer Overflow or Wraparound",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T14:05:24.997Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "q1"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
            }
          ],
          "value": "Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:47.774Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1355639"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-46/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-50/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Integer overflow in the Widget: Win32 component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8949",
    "datePublished": "2026-05-19T12:29:40.812Z",
    "dateReserved": "2026-05-19T12:29:40.080Z",
    "dateUpdated": "2026-05-19T17:10:47.774Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-8950 (GCVE-0-2026-8950)

Vulnerability from cvelistv5 – Published: 2026-05-19 12:29 – Updated: 2026-05-19 17:10

Title

Same-origin policy bypass in the Networking: HTTP component

Summary

Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.

Severity

9.3 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

CWE

CWE-346 - Origin Validation Error

Assigner

mozilla

References

5 references

URL	Tags
https://bugzilla.mozilla.org/show_bug.cgi?id=1965430
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…
https://www.mozilla.org/security/advisories/mfsa2…

Impacted products

2 products

Vendor	Product	Version
Mozilla	Firefox	Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)
Mozilla	Thunderbird	Unaffected: 140.11 , ≤ 140.* (rpm) Unaffected: 151 , ≤ * (rpm)

Credits

Jakub Szymsza

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 9.3,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "CHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-8950",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-19T15:47:45.885624Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-346",
                "description": "CWE-346 Origin Validation Error",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-19T15:49:32.341Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Firefox",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        },
        {
          "product": "Thunderbird",
          "vendor": "Mozilla",
          "versions": [
            {
              "lessThanOrEqual": "140.*",
              "status": "unaffected",
              "version": "140.11",
              "versionType": "rpm"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "151",
              "versionType": "rpm"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Jakub Szymsza"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
            }
          ],
          "value": "Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T17:10:48.079Z",
        "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
        "shortName": "mozilla"
      },
      "references": [
        {
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1965430"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-46/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-48/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-50/"
        },
        {
          "url": "https://www.mozilla.org/security/advisories/mfsa2026-51/"
        }
      ],
      "title": "Same-origin policy bypass in the Networking: HTTP component"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
    "assignerShortName": "mozilla",
    "cveId": "CVE-2026-8950",
    "datePublished": "2026-05-19T12:29:42.239Z",
    "dateReserved": "2026-05-19T12:29:41.562Z",
    "dateUpdated": "2026-05-19T17:10:48.079Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2026-1606

CVE-2026-8388 (GCVE-0-2026-8388)

CVE-2026-8391 (GCVE-0-2026-8391)

CVE-2026-8401 (GCVE-0-2026-8401)

CVE-2026-8706 (GCVE-0-2026-8706)

CVE-2026-8945 (GCVE-0-2026-8945)

CVE-2026-8946 (GCVE-0-2026-8946)

CVE-2026-8947 (GCVE-0-2026-8947)

CVE-2026-8948 (GCVE-0-2026-8948)

CVE-2026-8949 (GCVE-0-2026-8949)

CVE-2026-8950 (GCVE-0-2026-8950)

Tags

Sightings

Nomenclature