PT-2026-21733 · Mozilla · Firefox+1
Hafiizh
+1
·
Published
2026-02-24
·
Updated
2026-03-01
·
CVE-2026-2800
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Firefox versions prior to 148
Thunderbird versions prior to 148
Description
A spoofing issue exists in the WebAuthn component in Firefox for Android. This issue affects Firefox and Thunderbird.
Recommendations
Update Firefox to version 148 or later.
Update Thunderbird to version 148 or later.
Fix
Authentication Bypass by Spoofing
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firefox
Thunderbird