PT-2026-21733 · Mozilla · Firefox+1

Hafiizh

+1

·

Publicado

2026-02-24

·

Atualizado

2026-03-01

·

CVE-2026-2800

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148 Thunderbird versions prior to 148
Description A spoofing issue exists in the WebAuthn component in Firefox for Android. This issue affects Firefox and Thunderbird.
Recommendations Update Firefox to version 148 or later. Update Thunderbird to version 148 or later.

Correção

Authentication Bypass by Spoofing

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-290

Identificadores relacionados

CVE-2026-2800
OPENSUSE-SU-2026:10257-1

Produtos afetados

Firefox
Thunderbird