cbcvebase.
CVE-2026-8091
published 2026-05-07

CVE-2026-8091: Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, Thunderbird 140.10.1, and Firefox ESR 115.35.2.

Affected

4 ranges
VendorProductVersion rangeFixed in
mozillafirefox< 115.35.2115.35.2
mozillafirefox>= 140.0 < 140.10.1140.10.1
mozillafirefox_esr< Firefox ESR 115.35.2Firefox ESR 115.35.2
mozillathunderbird>= 140.0 < 140.10.1140.10.1