cbcvebase.
CVE-2026-8388
published 2026-05-12

CVE-2026-8388: Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11…

medium6.5CVSS 3.1
AVNACLPRNUINSUCLILAN
Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.

Affected

7 ranges
VendorProductVersion rangeFixed in
mozillafirefox< Firefox 150.0.3Firefox 150.0.3
mozillafirefox< 150.0.3150.0.3
mozillafirefox
mozillafirefox_esr< Firefox ESR 115.36Firefox ESR 115.36
mozillafirefox_esr< Firefox ESR 140.11Firefox ESR 140.11
mozillathunderbird< Thunderbird 140.11Thunderbird 140.11
rhel10firefox-flatpak