CVE-2026-8947

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 115.36 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11

Description A use-after-free issue exists in the DOM: Bindings (WebIDL) component. Use-after-free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed.

Recommendations Update Firefox to version 151. Update Firefox ESR to version 115.36. Update Firefox ESR to version 140.11. Update Thunderbird to version 151. Update Thunderbird to version 140.11.