top of page
perceptive_background_267k.jpg

Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbi…

Published:

23 maart 2026 om 23:00:00

Alert date:

24 maart 2026 om 22:05:46

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

A vulnerability in the JavaScript Engine component of Mozilla products involves incorrect boundary conditions and uninitialized memory access. The flaw affects multiple Mozilla applications including Firefox versions prior to 149, Firefox ESR versions prior to 140.9, and Thunderbird versions prior to 149 and 140.9. This represents a memory safety issue that could potentially lead to security compromises in JavaScript execution within these browsers and email clients.

Technical details

Mitigation steps:

Affected products:

Firefox
Firefox ESR
Thunderbird

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-4716
https://bugzilla.mozilla.org/show_bug.cgi?id=2018592
https://www.mozilla.org/security/advisories/mfsa2026-20/
https://www.mozilla.org/security/advisories/mfsa2026-22/
https://www.mozilla.org/security/advisories/mfsa2026-23/
https://www.mozilla.org/security/advisories/mfsa2026-24/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page