HIGH 7.3
CVE-2026-8090
EN Use-after-free in the DOM: Networking component. This vulnerability was fixed in Firefox 150.0.2, Firefox ESR 140.10.2, Firefox ESR 115.35.2, Thunderbird 150.0.2, and Thunderbird 140.10.2.
CVSS v3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
EPSS
0.0%
percentile 6.0%
Apps suivies affectées
Configurations CPE vulnérables
| Vendor | Produit | Plateforme | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| mozilla | thunderbird | Windows | <140.10.2 | cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:* |
| mozilla | thunderbird | Windows | <150.0.2 | cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:* |