PT-2026-21730 · Mozilla · Thunderbird+1
Published
2026-02-24
·
Updated
2026-03-01
·
CVE-2026-2797
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Firefox versions prior to 148
Thunderbird versions prior to 148
Description
A use-after-free flaw exists in the JavaScript GC component. This issue may lead to unexpected behavior or crashes.
Recommendations
Update Firefox to version 148 or later.
Update Thunderbird to version 148 or later.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firefox
Thunderbird