CVE-2026-8390
published 2026-05-12CVE-2026-8390: Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.0.3.
high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.0.3.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | < Firefox 150.0.3 | Firefox 150.0.3 |
| mozilla | firefox | < 150.0.3 | 150.0.3 |
| mozilla | firefox | — | — |
| rhel10 | firefox-flatpak | — | — |