Mozilla: >> Firefox Security Vulnerabilities
Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
CVSS Score
8.6
EPSS Score
0.003
Published
2026-05-19
Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
CVSS Score
9.6
EPSS Score
0.004
Published
2026-05-19
Spoofing issue in WebExtensions. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
CVSS Score
7.5
EPSS Score
0.004
Published
2026-05-19
Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
CVSS Score
6.5
EPSS Score
0.003
Published
2026-05-19
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
CVSS Score
8.1
EPSS Score
0.004
Published
2026-05-19
Spoofing issue in the Web Speech component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
CVSS Score
7.5
EPSS Score
0.003
Published
2026-05-19
Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
CVSS Score
7.5
EPSS Score
0.003
Published
2026-05-19
Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
CVSS Score
7.5
EPSS Score
0.003
Published
2026-05-19
Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.
CVSS Score
9.1
EPSS Score
0.004
Published
2026-05-19
Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
CVSS Score
7.5
EPSS Score
0.006
Published
2026-05-19