説明
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code.
Below is a complete list of vulnerabilities:
- Denial of service vulnerability in the Audio/Video: Web Codecs component can be exploited remotely to cause denial of service.
- Denial of service vulnerability in the JavaScript Engine: JIT component can be exploited remotely to cause denial of service.
- A remote code execution vulnerability in the DOM: Bindings (WebIDL) component can be exploited remotely to execute arbitrary code.
- Denial of service vulnerability in the JavaScript Engine component can be exploited remotely to cause denial of service.
- Security vulnerability in the Profile Backup component can be exploited to bypass security restrictions.
- A remote code execution vulnerability in the Disability Access APIs component can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Thunderbird 140 can be exploited remotely to execute arbitrary code.
オリジナルアドバイザリー
関連製品
CVEリスト
- CVE-2026-8388 high
- CVE-2026-8391 high
- CVE-2026-8401 critical
- CVE-2026-8946 critical
- CVE-2026-8947 high
- CVE-2026-8953 critical
- CVE-2026-8975 critical
も参照してください
お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com
この脆弱性についての記述に不正確な点がありますか? お知らせください!