CVE-2026-4700

Опубликовано: 24 мар. 2026

Источник: debian

EPSS Низкий

Описание

Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

Пакеты

Пакет	Статус	Версия исправления	Тип
firefox	fixed	149.0-1	package
firefox-esr	fixed	140.9.0esr-1	package
thunderbird	fixed	1:140.9.0esr-1	package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2026-20/#CVE-2026-4700
https://www.mozilla.org/en-US/security/advisories/mfsa2026-22/#CVE-2026-4700
https://www.mozilla.org/en-US/security/advisories/mfsa2026-24/#CVE-2026-4700

EPSS

Процентиль: 7%

0.00024

Низкий

Связанные уязвимости

CVE-2026-4700

CVSS3: 9.8

ubuntu

около 2 месяцев назад

Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

CVE-2026-4700

CVSS3: 7.5

redhat

около 2 месяцев назад

Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

CVE-2026-4700

CVSS3: 9.8

nvd

около 2 месяцев назад

Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.

GHSA-4pf4-jp4v-4g5c

CVSS3: 9.8

github

около 2 месяцев назад

Mitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149 and Firefox ESR < 140.9.

RLSA-2026:5932

rocky

около 1 месяца назад

Important: firefox security update

EPSS

Процентиль: 7%

0.00024

Низкий