CVE-2026-4688

Publication date

2026-03-24 12:30:22

Family

mozilla

State

PUBLISHED

Description

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9.