Firefox ESR AV Playback boundary flaw before 140.10.2
CVE-2026-8091 Published on May 7, 2026

Incorrect boundary conditions in the Audio/Video: Playback component
Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox ESR 140.10.2 and Firefox ESR 115.35.2.

NVD

Products Associated with CVE-2026-8091

Want to know whenever a new CVE is published for Mozilla Firefox? stack.watch will email you.

Mozilla Firefox

Affected Versions

Mozilla Firefox:

Version 115.35.2, <= 115.* is unaffected.
Version 140.10.2, <= * is unaffected.

Firefox ESR AV Playback boundary flaw before 140.10.2CVE-2026-8091 Published on May 7, 2026

Products Associated with CVE-2026-8091

Affected Versions

Firefox ESR AV Playback boundary flaw before 140.10.2
CVE-2026-8091 Published on May 7, 2026