CVE-2026-8971

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151

Description A same-origin policy bypass exists in the Networking: JAR component. The same-origin policy is a critical security mechanism that restricts how a document or script loaded from one origin can interact with a resource from another origin.

Recommendations Update Firefox to version 151. Update Thunderbird to version 151.

Fix

Origin Validation Error

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-346

Related Identifiers

CVE-2026-8971

OPENSUSE-SU-2026:10863-1

Affected Products

Firefox

Thunderbird

CVE-2026-8971

Weakness Enumeration

Related Identifiers

Affected Products

References · 42