CVE-2026-2781

Опубликовано: 24 фев. 2026

Источник: debian

EPSS Низкий

Описание

Integer overflow in the Libraries component in NSS. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

Пакеты

Пакет	Статус	Версия исправления	Тип
firefox	fixed	148.0-1	package
firefox-esr	fixed	140.8.0esr-1	package
thunderbird	fixed	1:140.8.0esr-1	package
nss	fixed	2:3.121-1	package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2026-13/#CVE-2026-2781
https://www.mozilla.org/en-US/security/advisories/mfsa2026-15/#CVE-2026-2781
https://www.mozilla.org/en-US/security/advisories/mfsa2026-17/#CVE-2026-2781
https://bugzilla.mozilla.org/show_bug.cgi?id=2009552 (private)
Fixed by: https://hg.mozilla.org/projects/nss/rev/245385e16fa6

EPSS

Процентиль: 14%

0.00045

Низкий

Связанные уязвимости

CVE-2026-2781

CVSS3: 9.8

ubuntu

30 дней назад

Integer overflow in the Libraries component in NSS. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

CVE-2026-2781

CVSS3: 6.1

redhat

30 дней назад

Integer overflow in the Libraries component in NSS. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

CVE-2026-2781

CVSS3: 9.8

nvd

30 дней назад

Integer overflow in the Libraries component in NSS. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

SUSE-SU-2026:0814-1

suse-cvrf

21 день назад

Security update for mozilla-nss

SUSE-SU-2026:0813-1

suse-cvrf

21 день назад

Security update for mozilla-nss

EPSS

Процентиль: 14%

0.00045

Низкий