Description Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.
CVSS vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Exploitability: 3.9 | Impact: 3.6 Attack Vector: Network
Complexity: Low
Privileges: None
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: None
Availability: None
Affected Packages3 packages
🔴 Vulnerability Details3 CVEList Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component ↗ 2026-02-24 ▶ GHSA GHSA-7xqm-gm4h-p23x: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component ↗ 2026-02-24 ▶ OSV CVE-2026-2783: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component ↗ 2026-02-24 ▶
📋 Vendor Advisories6 Red Hat firefox: thunderbird: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component ↗ 2026-02-24 ▶ Debian CVE-2026-2783: firefox - Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT c... ↗ 2026 ▶ Mozilla Mozilla Foundation Security Advisory 2026-16: CVE-2026-2783 ↗ ▶ Mozilla Mozilla Foundation Security Advisory 2026-15: CVE-2026-2783 ↗ ▶ Mozilla Mozilla Foundation Security Advisory 2026-13: CVE-2026-2783 ↗ ▶ Show 1 more
🕵️ Threat Intelligence1 Wiz CVE-2026-2783 Impact, Exploitability, and Mitigation Steps | Wiz ↗ ▶
💬 Community1 Bugzilla CVE-2026-2783 firefox: thunderbird: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component ↗ 2026-02-24 ▶