Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-0892

Опубликовано: 13 янв. 2026
Источник: redhat
CVSS3: 6.1
EPSS Низкий

Описание

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 147 and Thunderbird < 147.

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10firefoxNot affected
Red Hat Enterprise Linux 10rhel10/firefox-flatpakNot affected
Red Hat Enterprise Linux 6firefoxNot affected
Red Hat Enterprise Linux 7firefoxNot affected
Red Hat Enterprise Linux 8firefoxNot affected
Red Hat Enterprise Linux 9firefoxNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2428977firefox: thunderbird: Memory safety bugs fixed in Firefox 147 and Thunderbird 147

EPSS

Процентиль: 6%
0.00023
Низкий

6.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2026-0892

CVSS3: 9.8
ubuntu
3 месяца назад

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 147 and Thunderbird < 147.

nvd логотип

CVE-2026-0892

CVSS3: 9.8
nvd
3 месяца назад

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 147 and Thunderbird < 147.

debian логотип

CVE-2026-0892

CVSS3: 9.8
debian
3 месяца назад

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of ...

github логотип

GHSA-3m78-88vj-q2rf

CVSS3: 9.8
github
3 месяца назад

Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 147.

fstec логотип

BDU:2026-00524

CVSS3: 9.8
fstec
3 месяца назад

Уязвимость браузера Mozilla Firefox и почтового клиента Thunderbird, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 6%
0.00023
Низкий

6.1 Medium

CVSS3

Уязвимость CVE-2026-0892