CVE-2026-2783

Опубликовано: 24 фев. 2026

Источник: redhat

CVSS3: 6.1

EPSS Низкий

Описание

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 10	rhel10/firefox-flatpak	Affected
Red Hat Enterprise Linux 10	rhel10/thunderbird-flatpak	Affected
Red Hat Enterprise Linux 6	firefox	Out of support scope
Red Hat Enterprise Linux 6	thunderbird	Out of support scope
Red Hat Enterprise Linux 7	thunderbird	Out of support scope
Red Hat Enterprise Linux 10	firefox	Fixed	RHSA-2026:3361	25.02.2026
Red Hat Enterprise Linux 10	thunderbird	Fixed	RHSA-2026:3517	02.03.2026
Red Hat Enterprise Linux 10.0 Extended Update Support	firefox	Fixed	RHSA-2026:3976	09.03.2026
Red Hat Enterprise Linux 10.0 Extended Update Support	thunderbird	Fixed	RHSA-2026:4260	11.03.2026
Red Hat Enterprise Linux 7 Extended Lifecycle Support	firefox	Fixed	RHSA-2026:3984	09.03.2026

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2442300firefox: thunderbird: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component

EPSS

Процентиль: 11%

0.00037

Низкий

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2026-2783

CVSS3: 7.5

ubuntu

30 дней назад

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

CVE-2026-2783

CVSS3: 7.5

nvd

30 дней назад

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 148, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.

CVE-2026-2783

CVSS3: 7.5

debian

30 дней назад

Information disclosure due to JIT miscompilation in the JavaScript Eng ...

GHSA-7xqm-gm4h-p23x

CVSS3: 7.5

github

30 дней назад

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 148 and Firefox ESR < 140.8.

openSUSE-SU-2026:20365-1

suse-cvrf

10 дней назад

Security update for MozillaFirefox

EPSS

Процентиль: 11%

0.00037

Низкий

6.1 Medium

CVSS3