Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
9.1 CRITICAL
CVE-2026-4716 — Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component

Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
9.1 CRITICAL
CVE-2026-4715 — Uninitialized memory in the Graphics: Canvas2D component

Uninitialized memory in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4714 — Incorrect boundary conditions in the Audio/Video component

Incorrect boundary conditions in the Audio/Video component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4713 — Incorrect boundary conditions in the Graphics component

Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4712 — Information disclosure in the Widget: Cocoa component

Information disclosure in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Information Disclosure
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
9.8 CRITICAL
CVE-2026-4711 — Use-after-free in the Widget: Cocoa component

Use-after-free in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
9.8 CRITICAL
CVE-2026-4710 — Incorrect boundary conditions in the Audio/Video component

Incorrect boundary conditions in the Audio/Video component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4709 — Incorrect boundary conditions in the Audio/Video: GMP component

Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4708 — Incorrect boundary conditions in the Graphics component

Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4707 — Incorrect boundary conditions in the Graphics: Canvas2D component

Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4706 — Incorrect boundary conditions in the Graphics: Canvas2D component

Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
9.8 CRITICAL
CVE-2026-4705 — Undefined behavior in the WebRTC: Signaling component

Undefined behavior in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
7.5 HIGH
CVE-2026-4704 — Denial-of-service in the WebRTC: Signaling component

Denial-of-service in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Denial of Service
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
9.8 CRITICAL
CVE-2026-4702 — JIT miscompilation in the JavaScript Engine component

JIT miscompilation in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 25, 2026
Mar 24, 2026
Mar 25, 2026
9.8 CRITICAL
CVE-2026-4701 — Use-after-free in the JavaScript Engine component

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 24, 2026
Mar 24, 2026
Mar 24, 2026
9.8 CRITICAL
CVE-2026-4700 — Mitigation bypass in the Networking: HTTP component

Mitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Misconfiguration
Mar 24, 2026 Mar 24, 2026
Mar 24, 2026
Mar 24, 2026
7.5 HIGH
CVE-2026-4699 — Incorrect boundary conditions in the Layout: Text and Fonts component

Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 24, 2026
Mar 24, 2026
Mar 24, 2026
9.8 CRITICAL
CVE-2026-4698 — JIT miscompilation in the JavaScript Engine: JIT component

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 24, 2026
Mar 24, 2026
Mar 24, 2026
7.5 HIGH
CVE-2026-4697 — Incorrect boundary conditions in the Audio/Video: Web Codecs component

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 24, 2026
Mar 24, 2026
Mar 24, 2026
9.8 CRITICAL
CVE-2026-4696 — Use-after-free in the Layout: Text and Fonts component

Use-after-free in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9.

firefox firefox_esr thunderbird | Remote | Memory Corruption
Mar 24, 2026 Mar 24, 2026
Mar 24, 2026
Mar 24, 2026
Showing 20 of 6043 Results