PT-2026-40020 · Mozilla+1 · Firefox+1

Ggwhyp

Published

2026-05-12

Updated

2026-06-02

CVE-2026-8388

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150.0.3

Description Incorrect boundary conditions exist in the Just-In-Time (JIT) component of the JavaScript Engine. JIT is a compilation method that improves performance by compiling bytecode into native machine code at runtime.

Recommendations Update to version 150.0.3.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2026:21378

ALSA-2026:21380

ALSA-2026:21381

ALSA-2026:21382

ALSA-2026:22325

ALSA-2026:22643

CVE-2026-8388

OESA-2026-2392

OESA-2026-2393

OESA-2026-2394

OESA-2026-2465

OPENSUSE-SU-2026:10813-1

OPENSUSE-SU-2026:10864-1

RHSA-2026:21378

RHSA-2026:21380

RHSA-2026:21381

RHSA-2026:21382

RHSA-2026:22325

RHSA-2026:22643

Affected Products

Firefox

Rocky Linux

PT-2026-40020 · Mozilla+1 · Firefox+1

CVE-2026-8388

Weakness Enumeration

Related Identifiers

Affected Products

References · 129