
[CIVN-2026-0365] Multiple Vulnerabilities in Mozilla Firefox
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256
Multiple Vulnerabilities in Mozilla Firefox
Indian – Computer Emergency Response Team (https://www.cert-in.org.in)
Severity Rating: CRITICAL
Software Affected
Mozilla Firefox versions prior to 152.0.6.
Overview
Multiple vulnerabilities have been reported in Mozilla Firefox which could allow a remote attacker to execute arbitrary code, bypass security restrictions, denial of service, and data manipulation on the targeted system.
Target Audience:
All end-user organizations and individuals using Mozilla Firefox.
Risk Assessment:
High risk of denial of service (DoS), and data manipulation on the targeted system.
Impact Assessment:
Potential for remote code execution and bypass security restrictions.
Description
Mozilla Firefox is a free and open-source web browser developed by the Mozilla Foundation.
Multiple vulnerabilities exist in Mozilla Firefox due to an Invalid pointer in the JavaScript of WebAssembly component and Improper site isolation in the DOM of Navigation component.
Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code, bypass security restrictions, denial of service, and data manipulation on the targeted system.
Solution
Apply the appropriate security update provided by the vendor:
https://www.mozilla.org/en-US/security/advisories/mfsa2026-67/
Vendor Information
Mozilla
https://www.mozilla.org/en-US/security/advisories/mfsa2026-67/
References
Mozilla
https://www.mozilla.org/en-US/security/advisories/mfsa2026-67/
CVE Name
CVE-2026-15718
CVE-2026-15719
– —
Thanks and Regards,
CERT-In
Incident Response Help Desk
e-mail: incident@cert-in.org.in
Phone: +91-11-22902657
Toll Free Number: 1800-11-4949
Toll Free Fax : 1800-11-6969
Web: http://www.cert-in.org.in
PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4
PGP Key information:
https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS
Postal address:
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
—–BEGIN PGP SIGNATURE—–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=a3iH
—–END PGP SIGNATURE—–


