CVE-2026-12295 is a vulnerability in Mozilla Firefox
Published on June 16, 2026

Sandbox escape in the DOM: Navigation component
Sandbox escape in the DOM: Navigation component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, and Firefox ESR 115.37.

NVD

Products Associated with CVE-2026-12295

Want to know whenever a new CVE is published for Mozilla Firefox? stack.watch will email you.

Mozilla Firefox

Affected Versions

Mozilla Firefox:

Version 115.37, <= 115.* is unaffected.
Version 140.12, <= 140.* is unaffected.
Version 152, <= * is unaffected.

CVE-2026-12295 is a vulnerability in Mozilla FirefoxPublished on June 16, 2026

Products Associated with CVE-2026-12295

Affected Versions

CVE-2026-12295 is a vulnerability in Mozilla Firefox
Published on June 16, 2026