CVE-2026-3846

Publication date

2026-03-10 15:03:50

Family

mozilla

State

PUBLISHED

Description

Same-origin policy bypass in the CSS Parsing and Computation component. This vulnerability affects Firefox < 148.0.2.