← Back

CVE-2026-4692

nvd nist
Published: Mar 24, 2026Modified: Apr 13, 2026

JSON object

Loading...
10.0
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 6.0
Source: NVD

Description

Sandbox escape in the Responsive Design Mode component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

Affected (5)

Mozilla
2 products
Firefox
Thunderbird
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Firefox
Before 149.0
Firefox
Before 115.34.0
Firefox
From 128.0 to 140.9.0
Mozilla
Thunderbird
Before 149.0
Thunderbird
Before 140.9.0

References (6)

Source: security@mozilla.org
Permissions Required
Source: security@mozilla.org
Vendor Advisory
Source: security@mozilla.org
Vendor Advisory
Source: security@mozilla.org
Vendor Advisory
Source: security@mozilla.org
Vendor Advisory
Source: security@mozilla.org
Vendor Advisory

Timeline

No history available yet.