Skip to content

#firefox

15 articles

Security Alerts Apr 28, 2026

CVE-2026-7321: Sandbox escape in Mozilla Firefox ESR via WebRTC Networking

Sandbox escape in Mozilla Firefox ESR caused by incorrect boundary conditions in the WebRTC: Networking component. The vulnerability was fixed in Firefox ESR 140.10.1.

Security Alerts Feb 2, 2026

CVE-2026-4688: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Feb 1, 2026

CVE-2026-4691: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Use-after-free in the CSS Parsing and Computation component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9....

Security Alerts Jan 31, 2026

CVE-2026-4696: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Use-after-free in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9....

Security Alerts Jan 30, 2026

CVE-2026-4698: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9....

Security Alerts Jan 29, 2026

CVE-2026-4700: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Mitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 28, 2026

CVE-2026-4701: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 27, 2026

CVE-2026-4702: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

JIT miscompilation in the JavaScript Engine component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 26, 2026

CVE-2026-4705: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Undefined behavior in the WebRTC: Signaling component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 25, 2026

CVE-2026-4711: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Use-after-free in the Widget: Cocoa component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 24, 2026

CVE-2026-4715: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Uninitialized memory in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 23, 2026

CVE-2026-4716: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 22, 2026

CVE-2026-4717: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9....

Security Alerts Jan 20, 2026

CVE-2026-4723: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149....

Security Alerts Jan 19, 2026

CVE-2026-4725: Critical Vulnerability in Mozilla Firefox - Immediate Update Required

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149....