CVE-2026-8966
Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2025849
Tagged: Cybersecurity Alert
CVE-2026-8967
Information disclosure in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2027173
CVE-2026-8968
Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2030467
CVE-2026-8969
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2031123
CVE-2026-8957
Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2033850
CVE-2026-8958
Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2034713
CVE-2026-8959
Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2034754
CVE-2026-8960
Spoofing issue in WebExtensions. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=1940116
CVE-2026-8961
Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=1962625
CVE-2026-8962
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2004804
CVE-2026-8963
Spoofing issue in the Web Speech component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2021222
CVE-2026-8964
Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2025170
CVE-2026-8965
Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2025740
CVE-2026-8954
Incorrect boundary conditions, integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. More information : https://bugzilla.mozilla.org/show_bug.cgi?id=2030747