CVE-2026-12326

Published Jun 16, 2026

Last updated 6 hours ago

CVSS high 8.1

Overview

Description: Memory safety bugs present in Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
Source: security@mozilla.org
NVD status: Modified
Products: firefox, thunderbird

Risk scores

CVSS 3.1

Type: Secondary
Base score: 8.1
Impact score: 5.9
Exploitability score: 2.2
Vector string: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-119
0b0ca135-0b70-47e7-9f44-1890c2a1c46c: CWE-825

Hype score: Not currently trending

🚨*CVE* CVE-2026-12326 Memory safety bugs present in Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of … https://t.co/NWQEDKZ0pO ----- Traducción: CVE-2026-12326 Err… https://t.co/utmtNg
@infoflowcloud
16 Jun 2026
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*",
            "matchCriteriaId": "26C07C15-4B40-4068-A2F1-BE3E597D14B7",
            "versionEndExcluding": "152.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*",
            "matchCriteriaId": "77D88ED0-AABD-4312-98B8-3D4B70226577",
            "versionEndExcluding": "152.0.0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References