PT-2026-21729 · Mozilla · Thunderbird+1
Gary Kwong
·
Published
2026-02-24
·
Updated
2026-04-09
·
CVE-2026-2796
CVSS v3.1
9.8
Critical
| AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Firefox versions prior to 148
Thunderbird versions prior to 148
Description
The issue is a JIT miscompilation in the JavaScript: WebAssembly component. An LLM, specifically Anthropic’s Claude Opus 4.6, discovered and exploited this issue, demonstrating the potential of AI in vulnerability research. The exploit chain involves a use-after-free, type confusion, memory leak, arbitrary read/write, and ultimately code execution. The vulnerability was identified through a process where the AI explores the codebase, identifies potential bugs, and verifies exploitability through iteration.
Recommendations
Firefox versions prior to 148 should be updated to version 148.
Thunderbird versions prior to 148 should be updated to version 148.
Fix
Type Confusion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firefox
Thunderbird