Mozilla
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any Mozilla product.
RSS Feeds for Mozilla security vulnerabilities
Create a CVE RSS feed including security vulnerabilities found in Mozilla products with stack.watch. Just hit watch, then grab your custom RSS feed url.
Products by Mozilla Sorted by Most Security Vulnerabilities since 2018
Recent Mozilla Security Advisories
| Advisory | Title | Published |
|---|---|---|
| mfsa2026-24 | Security Vulnerabilities fixed in Thunderbird 140.9 mfsa2026-24 | March 24, 2026 |
| mfsa2026-23 | Security Vulnerabilities fixed in Thunderbird 149 mfsa2026-23 | March 24, 2026 |
| mfsa2026-21 | Security Vulnerabilities fixed in Firefox ESR 115.34 mfsa2026-21 | March 24, 2026 |
| mfsa2026-20 | Security Vulnerabilities fixed in Firefox 149 mfsa2026-20 | March 24, 2026 |
| mfsa2026-22 | Security Vulnerabilities fixed in Firefox ESR 140.9 mfsa2026-22 | March 24, 2026 |
| mfsa2026-19 | Security Vulnerabilities fixed in Firefox 148.0.2 mfsa2026-19 | March 10, 2026 |
| mfsa2026-18 | Security Vulnerabilities fixed in Focus for iOS 148.2 mfsa2026-18 | March 2, 2026 |
| mfsa2026-13 | Security Vulnerabilities fixed in Firefox 148 mfsa2026-13 | February 24, 2026 |
| mfsa2026-15 | Security Vulnerabilities fixed in Firefox ESR 140.8 mfsa2026-15 | February 24, 2026 |
| mfsa2026-16 | Security Vulnerabilities fixed in Thunderbird 148 mfsa2026-16 | February 24, 2026 |
Known Exploited Mozilla Vulnerabilities
The following Mozilla vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.
| Title | Description | Added |
|---|---|---|
| Mozilla Multiple Products Remote Code Execution Vulnerability |
Mozilla Firefox, SeaMonkey, and Thunderbird contain an unspecified vulnerability when JavaScript is enabled. This allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracking, and the creation of multiple frames, which triggers memory corruption. CVE-2010-3765 Exploit Probability: 86.9% |
October 6, 2025 |
| Mozilla Firefox Use-After-Free Vulnerability |
Mozilla Firefox and Firefox ESR contain a use-after-free vulnerability in Animation timelines that allows for code execution in the content process. CVE-2024-9680 Exploit Probability: 31.3% |
October 15, 2024 |
| Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability |
Mozilla Firefox, Firefox ESR, and Thunderbird contain a use-after-free vulnerability in SVG Animation, targeting Firefox and Tor browser users on Windows. CVE-2016-9079 Exploit Probability: 84.8% |
June 22, 2023 |
| Mozilla Firefox Security Feature Bypass Vulnerability |
Moxilla Firefox allows remote attackers to bypass the Same Origin Policy to read arbitrary files or gain privileges. CVE-2015-4495 Exploit Probability: 71.6% |
May 25, 2022 |
| Mozilla Firefox and Thunderbird Type Confusion Vulnerability |
Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash. CVE-2019-11707 Exploit Probability: 84.4% |
May 23, 2022 |
| Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability |
Mozilla Firefox and Thunderbird contain a sandbox escape vulnerability that could result in remote code execution. CVE-2019-11708 Exploit Probability: 68.9% |
May 23, 2022 |
| Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability |
Mozilla Firefox and Thunderbird do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial-of-service or possibly execute arbitrary code via a crafted web site. CVE-2013-1690 Exploit Probability: 47.1% |
March 28, 2022 |
| Mozilla Firefox Use-After-Free Vulnerability |
Mozilla Firefox contains a use-after-free vulnerability in WebGPU IPC Framework which can be exploited to perform arbitrary code execution. CVE-2022-26486 Exploit Probability: 2.2% |
March 7, 2022 |
| Mozilla Firefox Use-After-Free Vulnerability |
Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform arbitrary code execution. CVE-2022-26485 Exploit Probability: 7.2% |
March 7, 2022 |
| Mozilla Firefox Information Disclosure Vulnerability |
Mozilla Firefox does not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale functions, which allows remote attackers to obtain sensitive information from process memory via a crafted web site. CVE-2013-1675 Exploit Probability: 4.7% |
March 3, 2022 |
| Mozilla Firefox 74 and Firefox ESR 68.6 nsDocShell vulnerability |
A race condition can cause a use-after-free when running the nsDocShell destructor. This vulnerability affects Thunderbird < 68.7.0, Firefox < 74.0.1, and Firefox ESR < 68.6.1. CVE-2020-6819 Exploit Probability: 0.4% |
November 3, 2021 |
| Mozilla Firefox 74 and Firefox ESR 68.6 ReadableStream vulnerability |
A race condition can cause a use-after-free when handling a ReadableStream. This vulnerability affects Thunderbird < 68.7.0, Firefox < 74.0.1, and Firefox ESR < 68.6.1. CVE-2020-6820 Exploit Probability: 3.1% |
November 3, 2021 |
| Mozilla Firefox IonMonkey JIT compiler Type Confusion Vulnerability |
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1 CVE-2019-17026 Exploit Probability: 64.8% |
November 3, 2021 |
Of the known exploited vulnerabilities above, 3 are in the top 1%, or the 99th percentile of the EPSS exploit probability rankings. 5 known exploited Mozilla vulnerabilities are in the top 5% (95th percentile or greater) of the EPSS exploit probability rankings.
By the Year
In 2026 there have been 124 vulnerabilities in Mozilla with an average score of 8.6 out of ten. Last year, in 2025 Mozilla had 209 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Mozilla in 2026 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.98.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 124 | 8.59 |
| 2025 | 209 | 7.61 |
| 2024 | 204 | 7.12 |
| 2023 | 202 | 7.24 |
| 2022 | 188 | 7.42 |
| 2021 | 158 | 7.12 |
| 2020 | 184 | 7.25 |
| 2019 | 152 | 7.53 |
| 2018 | 345 | 7.65 |
It may take a day or so for new Mozilla vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Mozilla Security Vulnerabilities
| CVE | Date | Vulnerability | Products |
|---|---|---|---|
| CVE-2026-4371 | Mar 24, 2026 |
Thunderbird <149 Vulnerable Parser Reads OOB via Malformed Mail (CVE-2026-4371)A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking sensitive data. This vulnerability affects Thunderbird < 149 and Thunderbird < 140.9. |
Thunderbird
|
| CVE-2026-3889 | Mar 24, 2026 |
Thunderbird Email Client Spoofing Issue <149, <140.9Spoofing issue in Thunderbird. This vulnerability affects Thunderbird < 149 and Thunderbird < 140.9. |
Thunderbird
|
| CVE-2026-4729 | Mar 24, 2026 |
Memory safety bugs in Firefox <149 (CVE-2026-4729)Memory safety bugs present in Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4721 | Mar 24, 2026 |
Memory Safety Bug in Firefox (ESR 115.33/140.8 & 148) prior to v149Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4720 | Mar 24, 2026 |
Mozilla Firefox <149 & ESR <140.9 Memory Corruption (Thunderbird)Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4719 | Mar 24, 2026 |
Firefox Graphics:Text Boundary Condition Flaw (pre-149 / ESR<140.9)Incorrect boundary conditions in the Graphics: Text component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4728 | Mar 24, 2026 |
Firefox Privacy Anti-Tracking Spoofing VulnerabilitySpoofing issue in the Privacy: Anti-Tracking component. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4718 | Mar 24, 2026 |
Undefined Behavior in WebRTC Signaling of Firefox <149Undefined behavior in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4727 | Mar 24, 2026 |
Firefox <149 NSS Libraries DoS (Mozilla)Denial-of-service in the Libraries component in NSS. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4726 | Mar 24, 2026 |
Denial-of-Service in Firefox XML Component (CVE-2026-4726)Denial-of-service in the XML component. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4717 | Mar 24, 2026 |
Privilege Escalation in Netmonitor of Firefox <149/ESR 140.9Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4716 | Mar 24, 2026 |
Firefox <149/ESR <140.9: JS Engine uninitialized memoryIncorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4715 | Mar 24, 2026 |
Uninitialized Memory in Firefox Canvas2D component <149/ESR<140.9Uninitialized memory in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4714 | Mar 24, 2026 |
Firefox Audio/Video Boundary Condition Flaw (v <149, ESR <140.9)Incorrect boundary conditions in the Audio/Video component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4713 | Mar 24, 2026 |
FF <149 Graphics Boundary Condition FlawIncorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4725 | Mar 24, 2026 |
Firefox Canvas2D Sandbox Escape due to Use-After-FreeSandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4712 | Mar 24, 2026 |
Firefox <149 Info Disclosure via Widget Cocoa Comp (CVE-2026-4712)Information disclosure in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4711 | Mar 24, 2026 |
Firefox <149 Use-after-free in Cocoa Widget ComponentUse-after-free in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4710 | Mar 24, 2026 |
Firefox AV Boundary Condition Flaw v<149/ESR<140.9Incorrect boundary conditions in the Audio/Video component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4709 | Mar 24, 2026 |
Mozilla Firefox <149 Audio/Video: GMP Boundary Condition VulnerabilityIncorrect boundary conditions in the Audio/Video: GMP component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4708 | Mar 24, 2026 |
Firefox Graphics Boundary Flaw (149, ESR<140.9)Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4707 | Mar 24, 2026 |
Firefox <149 Canvas2D Boundary Condition Flaw (CVE20264707)Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4706 | Mar 24, 2026 |
Firefox <149 & ESR <115.34,140.9 Canvas2D Boundary Condition VulnerabilityIncorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4705 | Mar 24, 2026 |
CVE-2026-4705: WebRTC Signaling UB Firefox <149/ESR <140.9Undefined behavior in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4724 | Mar 24, 2026 |
Undefined Behavior in Firefox Audio/Video Component (CVE-2026-4724)Undefined behavior in the Audio/Video component. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4704 | Mar 24, 2026 |
Firefox <149 Denial-of-Service via WebRTC SignalingDenial-of-service in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4723 | Mar 24, 2026 |
Use-After-Free in Firefox JS Engine (<v149)Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4702 | Mar 24, 2026 |
Mozilla Firefox <149 JIT Miscompilation in JS Engine (CVE-2026-4702)JIT miscompilation in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4722 | Mar 24, 2026 |
Privilege Escalation in Firefox IPC ComponentPrivilege escalation in the IPC component. This vulnerability affects Firefox < 149 and Thunderbird < 149. |
Firefox
Thunderbird
|
| CVE-2026-4701 | Mar 24, 2026 |
Use-after-free in Firefox JS Engine before 149 & ESR <140.9Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4700 | Mar 24, 2026 |
Firefox <149 Mitigation Bypass in Networking:HTTP ComponentMitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4698 | Mar 24, 2026 |
Firefox <149 JIT-Miscompilation SpiderMonkeyJIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4699 | Mar 24, 2026 |
Firefox <149 Boundary Error in Layout Text & FontsIncorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4697 | Mar 24, 2026 |
Firefox <149 Audio/Video Web Codecs boundary flawIncorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4696 | Mar 24, 2026 |
UA-Free in Firefox Layout:Text & Fonts v<149 (ESR<115.34)Use-after-free in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4695 | Mar 24, 2026 |
Firefox <149: Incorrect Boundary Conditions in Audio/Video Web CodecsIncorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4694 | Mar 24, 2026 |
Integer Overflow Firefox Graphics <=149 (ESR<115.34)Incorrect boundary conditions, integer overflow in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4693 | Mar 24, 2026 |
Firefox <149/ESR<140.9 AV Playback Boundary Check FailureIncorrect boundary conditions in the Audio/Video: Playback component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4692 | Mar 24, 2026 |
CVE-2026-4692: Sandbox Escape via Responsive Design Mode in Firefox <149Sandbox escape in the Responsive Design Mode component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4691 | Mar 24, 2026 |
Firefox CSS Parsing Use-After-Free (before 149, ESR <115.34/140.9)Use-after-free in the CSS Parsing and Computation component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4690 | Mar 24, 2026 |
Firefox <149 XPCOM Sandbox Escape (CVE-2026-4690)Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4689 | Mar 24, 2026 |
Firefox <149 Sandbox Escape: XPCOM Integer OverflowSandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4688 | Mar 24, 2026 |
Firefox <149/ESR<140.9: Disability Access API UAF Sandbox EscapeSandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4687 | Mar 24, 2026 |
Firefox <149 Sandbox Escape via Telemetry Boundary ConditionsSandbox escape due to incorrect boundary conditions in the Telemetry component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4686 | Mar 24, 2026 |
Firefox Canvas2D Incorrect Boundary Conditions ( Firefox 149 / ESR 140.9)Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4685 | Mar 24, 2026 |
Firefox Canvas2D boundary flaw before v149/ESR115.34/ESR140.9Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-4684 | Mar 24, 2026 |
WebRender Use-After-Free Race in Firefox <149 (ESR <115.34/140.9)Race condition, use-after-free in the Graphics: WebRender component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
Firefox
FireFox Extended Support Release (ESR)
Thunderbird
And others... |
| CVE-2026-3847 | Mar 10, 2026 |
Memory safety bugs in Firefox <148.0.2Memory safety bugs present in Firefox 148.0.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 148.0.2. |
Firefox
|
| CVE-2026-3846 | Mar 10, 2026 |
Firefox Same-origin bypass in CSS parsing <148.0.2Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox < 148.0.2. |
Firefox
|
| CVE-2026-3845 | Mar 10, 2026 |
Firefox Android 148 AV Playback Heap OverflowHeap buffer overflow in the Audio/Video: Playback component in Firefox for Android. This vulnerability affects Firefox < 148.0.2. |
Firefox
|