[CIVN-2026-0365] Multiple Vulnerabilities in Mozilla Firefox

By Published On: July 16, 2026

—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256


Multiple Vulnerabilities in Mozilla Firefox


Indian – Computer Emergency Response Team (https://www.cert-in.org.in)


Severity Rating: CRITICAL


Software Affected


Mozilla Firefox versions prior to 152.0.6.

Overview


Multiple vulnerabilities have been reported in Mozilla Firefox which could allow a remote attacker to execute arbitrary code, bypass security restrictions, denial of service, and data manipulation on the targeted system.


Target Audience:

All end-user organizations and individuals using Mozilla Firefox.


Risk Assessment:

High risk of denial of service (DoS), and data manipulation on the targeted system.


Impact Assessment:

Potential for remote code execution and bypass security restrictions.


Description


Mozilla Firefox is a free and open-source web browser developed by the Mozilla Foundation.


Multiple vulnerabilities exist in Mozilla Firefox due to an Invalid pointer in the JavaScript of WebAssembly component and Improper site isolation in the DOM of Navigation component.


Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code, bypass security restrictions, denial of service, and data manipulation on the targeted system.


Solution


Apply the appropriate security update provided by the vendor:

https://www.mozilla.org/en-US/security/advisories/mfsa2026-67/



Vendor Information


Mozilla

https://www.mozilla.org/en-US/security/advisories/mfsa2026-67/


References


Mozilla

https://www.mozilla.org/en-US/security/advisories/mfsa2026-67/


CVE Name

CVE-2026-15718

CVE-2026-15719




– —


Thanks and Regards,

CERT-In


Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS


Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–


iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmpY5ZoACgkQ3jCgcSdc

ys9ZKg/+NVQeIGvdLl4bqcL91GzHtO1v/KHIux8CzfRSBuSD5QduH26EOCXEJP2z

M7dxujpmv5RYtqFetkZu2FuJu9ZfWOD+mPu2IC5DNfdWeXPLFsRg+39Zym6A1uCl

YeWnSJpdSUfx+A8vPGUJYvuwU0U80ev1YD18RH3aIPDg5apux+nTfur9+RTe4YnW

QQc6lKuJ8jUmwQmJc9sntXn0aQ285CSP/XoBivJLfqrreVMcIFcAONti5FUgHQ3F

u1HoWouYvFAfGaguNRE8gVBYKDY8AcLoas0dayRC5jePFhjyhWSm/bJiUIOW1w6m

qpy0r8dyU+Z+qYNjputQaMzi6ybfda2F5SXqCGEhIKOSPt/cm5QybAY2BLzON6Hp

5mwti/2Pf2a3yxDhgscfB++lA3AKkaVXSi5hiJ37PPzD2TevCe2PvG2A2WDK9ddA

iLZjYTsJ6Ay4Q6YmRq6FyoXxUIX09y3jroL//u9X2oVuXVornsh6gO079dA6a13q

xJQUl7asyhQDciYDHjXo9NLosqSiaeFW63Nh7gBg7pGjkFJsoTvFb1RDUpTuK5lN

dlzwGMBfATc8NtOhovi2VZyKLjPLQw5+OMD/PytHx3i6s7mJcWeIThq7N9VAEsW+

GcXWGonRM50tF2XQtTreFV6olB/D4nBQZyg/gzAU6BLvQy/r7U0=

=a3iH

—–END PGP SIGNATURE—–

Share this article