Mozilla · Thunderbird · CVE-2026-2765
**Name of the Vulnerable Software and Affected Versions**
Firefox versions prior to 148
Firefox ESR versions prior to 140.8
Thunderbird versions prior to 148
Thunderbird versions prior to 140.8
**Description**
A use-after-free issue exists in the JavaScript Engine component.
**Recommendations**
Update Firefox to version 148 or later.
Update Firefox ESR to version 140.8 or later.
Update Thunderbird to version 148 or later.
Update Thunderbird to version 140.8 or later.