Mozilla Firefox
Moderate fix1 remedy
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*
Moderate fix1 remedy
- 149
Mozilla Firefox and Thunderbird Memory Safety Vulnerability Allowing Arbitrary Code Execution
Vulnerability
Patched
A vulnerability has been identified in Mozilla Firefox and Thunderbird, specifically in versions 149 and 140.9, respectively. This vulnerability arises from memory safety issues that could potentially be exploited to execute arbitrary code. Some of these memory safety bugs showed signs of memory corruption, indicating a possibility of exploitation.
Impact
Exploitation of this vulnerability could lead to arbitrary code execution.
Remediation
Users can upgrade to Firefox 150, Firefox ESR 140.10, Thunderbird 150, or Thunderbird ESR 140.10 to address this vulnerability.
Added: Apr 26, 2026, 8:00 PM
Updated: Apr 26, 2026, 8:00 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
3.6remediation
7.7relevance
6.8threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.