CVE Catalog

CVE-2026-12324

HighCVSS 7.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.22%

13th percentile — higher than 13% of all known CVEs

Summary

Incorrect boundary conditions in the Graphics: CanvasWebGL component may lead to unexpected application behavior. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12.

Risk Assessment

Organizations may be exposed to performance or stability issues in applications using CanvasWebGL. Exploitation of this vulnerability could lead to unauthorized access or system crashes.

Recommendation

It is recommended to update to the latest versions of Firefox and Thunderbird to mitigate this vulnerability. Regular software updates are crucial for maintaining security.

Original NVD description (English source)

Incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS