Security Advisory

CVE-2026-4688

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-24 12:30:22

Last updated 2026-04-13 13:48:35

Assigner mozilla

State PUBLISHED

Description

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

← Browse all CVEs View on cve.org ↗