Description
JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
Published: 2025-12-09
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary code execution
Action: Apply patch
AI Analysis

Impact

JIT miscompilation in the JavaScript engine’s JIT component can cause the browser or email client to execute incorrect code paths. The flaw is rated with a CVSS score of 9.8, indicating that an attacker who can trigger the miscompilation may gain arbitrary code execution privileges, compromising system confidentiality, integrity, and availability.

Affected Systems

Mozilla Firefox versions earlier than 146 and ESR builds earlier than 115.31 or 140.6, as well as Mozilla Thunderbird earlier than 146 and ESR builds earlier than 140.6, are vulnerable. The impacted products include the standard and Enterprise Support Release (ESR) editions of Firefox and Thunderbird.

Risk and Exploitability

Because the vulnerability is tied to the JavaScript engine, exploitation likely requires delivery of crafted JavaScript code – either via a malicious web page or an email containing executable scripts. The EPSS score is below 1 %, suggesting that known exploits are rare or still immature. The vulnerability is not listed in the CISA KEV catalog, but its high CVSS rating and the ability to achieve remote code execution mean that timely patching is essential.

Generated by OpenCVE AI on April 20, 2026 at 17:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update all affected installations of Firefox and Thunderbird to the patched releases (Firefox 146 or newer, ESR 115.31 or 140.6; Thunderbird 146 or newer, ESR 140.6).
  • If an immediate update cannot be applied, schedule a forced upgrade through the organization’s software distribution system to ensure all endpoints receive the fix as soon as possible.
  • As a temporary protective measure, limit the execution of JavaScript in untrusted contexts—such as disabling JavaScript in the email client for unknown senders or enforcing strict content‑security policies for web content already in use.

Generated by OpenCVE AI on April 20, 2026 at 17:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4401-1 firefox-esr security update
Debian DLA Debian DLA DLA-4405-1 thunderbird security update
Debian DSA Debian DSA DSA-6078-1 firefox-esr security update
Debian DSA Debian DSA DSA-6081-1 thunderbird security update
Ubuntu USN Ubuntu USN USN-7991-1 Thunderbird vulnerabilities
History

Mon, 13 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6. JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.

Thu, 11 Dec 2025 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-94
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 10 Dec 2025 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla thunderbird
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*
Vendors & Products Mozilla thunderbird
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}

 cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Wed, 10 Dec 2025 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
Mozilla firefox Esr
Vendors & Products Mozilla
Mozilla firefox
Mozilla firefox Esr

Wed, 10 Dec 2025 14:45:00 +0000

Type Values Removed Values Added
Description JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, and Firefox ESR < 140.6. JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, Firefox ESR < 140.6, Thunderbird < 146, and Thunderbird < 140.6.
References

Wed, 10 Dec 2025 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}

threat_severity

Important

Tue, 09 Dec 2025 13:45:00 +0000

Type Values Removed Values Added
Description JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 146, Firefox ESR < 115.31, and Firefox ESR < 140.6.
Title JIT miscompilation in the JavaScript Engine: JIT component
References

Subscriptions

Mozilla Firefox Firefox Esr Thunderbird
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T14:25:33.489Z

Reserved: 2025-12-09T13:37:56.958Z

Link: CVE-2025-14324

cve-icon Vulnrichment

Updated: 2025-12-11T20:03:02.945Z

cve-icon NVD

Status : Modified

Published: 2025-12-09T16:17:39.890

Modified: 2026-04-13T15:16:45.403

Link: CVE-2025-14324

cve-icon Redhat

Severity : Important

Publid Date: 2025-12-09T13:37:57Z

Links: CVE-2025-14324 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T17:45:12Z

Weaknesses