Fixed Intel

CVE-2026-2796

Critical
CVSS 9.8

Description

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 148 and Thunderbird < 148.

CVSS Score

9.8/ 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weakness Classification (CWE)

CWE-843Type ConfusionMITRE

Related Articles (2)

Industry News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Mar 9, 2026

Industry News

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

Anthropic’s Claude Opus 4.6 AI found 22 Firefox vulnerabilities, including 14 high severity, helping Mozilla patch flaws in Firefox 148.

Mar 7, 2026

References (3)

https://bugzilla.mozilla.org/show_bug.cgi?id=2013165security@mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-13/security@mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-16/security@mozilla.org

Risk Assessment

ELEVATED
Critical CVSS

Details

Severity
Critical
CVSS
9.8
CWE
CWE-843
CISA KEV
No
Articles
2

Timeline

Published

Feb 24, 2026

External Links

NVD (NIST)CVE DetailsMITRE CVE