Mozilla · Thunderbird · CVE-2026-6786
**Name of the Vulnerable Software and Affected Versions**
Firefox ESR version 140.9
Thunderbird ESR version 140.9
Firefox version 149
Thunderbird version 149
**Description**
Memory safety bugs involving memory corruption could allow an attacker to run arbitrary code.
**Recommendations**
Update Firefox ESR to version 140.10.
Update Thunderbird ESR to version 140.10.
Update Firefox to version 150.
Update Thunderbird to version 150.