CVE Catalog

CVE-2026-12305

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.37%

29th percentile — higher than 29% of all known CVEs

Summary

A memory safety bug was fixed in Firefox 152. This vulnerability was also fixed in Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12.

Risk Assessment

Exploitation of this vulnerability could lead to unauthorized memory access, posing a risk to user data and system integrity.

Recommendation

It is recommended to update to the latest version of Firefox or Thunderbird to mitigate this vulnerability.

Original NVD description (English source)

Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS