top of page
perceptive_background_267k.jpg

Use-after-free in the Widget: Cocoa component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9.

Published:

23 March 2026 at 23:00:00

Alert date:

24 March 2026 at 20:06:33

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

A use-after-free vulnerability exists in the Widget: Cocoa component of Mozilla Firefox. This memory corruption flaw affects Firefox versions prior to 149 and Firefox ESR versions prior to 140.9. The vulnerability is tracked as CVE-2026-4711 and has been documented in Mozilla's security advisories. Use-after-free vulnerabilities can potentially lead to arbitrary code execution or denial of service conditions. Mozilla has addressed this issue in the latest versions of both Firefox and Firefox ESR.

Technical details

Mitigation steps:

Affected products:

Firefox
Firefox ESR

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-4711
https://bugzilla.mozilla.org/show_bug.cgi?id=2017002
https://www.mozilla.org/security/advisories/mfsa2026-20/
https://www.mozilla.org/security/advisories/mfsa2026-22/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page