CVE-2026-2793 - Vulnerability Details

- Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

Description

Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

Published: 2026-02-24

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Memory safety bugs were discovered in multiple build lines of Mozilla Firefox and Thunderbird, including the standard release, latest release, and enterprise-focused ESR branches. These bugs triggered memory corruption; the description indicates that with sufficient effort, an attacker might have been able to execute arbitrary code. The weakness is classified as a buffer overflow and other memory-protection violations (CWE-787). The result would be loss of confidentiality, integrity, and availability for the affected user or system as an attacker would gain the privileges of the application process.

Affected Systems

Mozilla products are impacted: Firefox versions 147 and 148, as well as ESR 115.33 and ESR 140.8, and Thunderbird versions 147 and 148, along with ESR 140.8. Older releases such as Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird ESR 140.7 are vulnerable.

Risk and Exploitability

The CVSS score is 9.8, indicating critical severity. Exploit probability, per EPSS, is listed as less than 1 %, suggesting very low likelihood of active exploitation at this time, and the vulnerability is not currently in CISA’s KEV catalog. Likely vectors arise from user‑triggered content such as malicious web pages, emails, or attachment handling, but the exact attack path is not detailed in the advisories. The high severity indicates that any successful exploitation would allow full control of the affected process.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Mozilla

Firefox

affected

Version	Status	Constraints
`115.33`	unaffected	≤ 115.*
`140.8`	unaffected	≤ 140.*
`148`	unaffected	≤ *

Mozilla

Thunderbird

affected

Version	Status	Constraints
`140.8`	unaffected	≤ 140.*
`148`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:a:mozilla:firefox:::::esr:::*
	cpe:2.3:a:mozilla:firefox:::::-:::*
	cpe:2.3:a:mozilla:firefox:::::esr:::*
	cpe:2.3:a:mozilla:thunderbird:::::esr:::*
	cpe:2.3:a:mozilla:thunderbird:::::-:::*

No data.

Vendor Product Confidence Versions

Mozilla

Firefox

100%

Version	Status	Scheme	Platform
`[0,148)`	affected	generic	—

Mozilla

Firefox Esr

100%

Version	Status	Scheme	Platform
`[0,115.33)`	affected	generic	—

Mozilla

Firefox Esr

100%

Version	Status	Scheme	Platform
`[0,140.8)`	affected	generic	—

Mozilla

Thunderbird

100%

Version	Status	Scheme	Platform
`[0,148)`	affected	generic	—

Mozilla

Thunderbird

100%

Version	Status	Scheme	Platform
`[0,140.8)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Mozilla Firefox to version 148, or to the ESR releases 115.33 or 140.8.
Upgrade Mozilla Thunderbird to version 148, or to the ESR release 140.8.
Ensure that no older, vulnerable Firefox or Thunderbird binaries remain installed on the system and block installation of those versions.

Generated by OpenCVE AI on April 15, 2026 at 15:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-4495-1	thunderbird security update
Debian DLA	DLA-4496-1	firefox-esr security update
Debian DSA	DSA-6148-1	firefox-esr security update
Debian DSA	DSA-6152-1	thunderbird security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00074.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://bugzilla.mozilla.org/buglist.cgi?bug_id=2015196%2C2016423%2C2016498
https://nvd.nist.gov/vuln/detail/CVE-2026-2793
https://www.cve.org/CVERecord?id=CVE-2026-2793
https://www.mozilla.org/security/advisories/mfsa2026-13/
https://www.mozilla.org/security/advisories/mfsa2026-14/
https://www.mozilla.org/security/advisories/mfsa2026-15/
https://www.mozilla.org/security/advisories/mfsa2026-15/#CVE-2026-2793
https://www.mozilla.org/security/advisories/mfsa2026-16/
https://www.mozilla.org/security/advisories/mfsa2026-17/

History

Mon, 13 Apr 2026 14:30:00 +0000

Type	Values Removed	Values Added
Description	Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.	Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

Wed, 25 Feb 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 25 Feb 2026 15:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-787
CPEs		cpe:2.3:a:mozilla:firefox:::::-:::* cpe:2.3:a:mozilla:firefox:::::esr:::* cpe:2.3:a:mozilla:thunderbird:::::-:::* cpe:2.3:a:mozilla:thunderbird:::::esr:::*
Metrics	cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}`	cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Wed, 25 Feb 2026 12:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mozilla Mozilla firefox Mozilla firefox Esr Mozilla thunderbird
Vendors & Products		Mozilla Mozilla firefox Mozilla firefox Esr Mozilla thunderbird

Wed, 25 Feb 2026 00:15:00 +0000

Type	Values Removed	Values Added
References		https://nvd.nist.gov/vuln/detail/CVE-2026-2793 https://www.cve.org/CVERecord?id=CVE-2026-2793 https://www.mozilla.org/security/advisories/mfsa2026-15/#CVE-2026-2793
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}` threat_severity `Important`

Tue, 24 Feb 2026 18:00:00 +0000

Type	Values Removed	Values Added
Description	Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, and Firefox ESR < 140.8.	Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.
References		https://www.mozilla.org/security/advisories/mfsa2026-16/ https://www.mozilla.org/security/advisories/mfsa2026-17/

Tue, 24 Feb 2026 14:00:00 +0000

Type	Values Removed	Values Added
Description		Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, and Firefox ESR < 140.8.
Title		Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148
References		https://bugzilla.mozilla.org/buglist.cgi?bug_id=2015196%2C2016423%2C2016498 https://www.mozilla.org/security/advisories/mfsa2026-13/ https://www.mozilla.org/security/advisories/mfsa2026-14/ https://www.mozilla.org/security/advisories/mfsa2026-15/

Subscriptions

Mozilla Firefox Firefox Esr Thunderbird

MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2026-02-24T13:33:23.571Z

Updated: 2026-04-13T13:53:03.837Z

Reserved: 2026-02-19T15:06:38.377Z

Link: CVE-2026-2793

Vulnrichment

Updated: 2026-02-25T17:44:20.352Z

NVD

Status : Modified

Published: 2026-02-24T14:16:27.787

Modified: 2026-04-13T15:17:28.113

Link: CVE-2026-2793

Redhat

Severity : Important

Publid Date: 2026-02-24T13:33:23Z

Links: CVE-2026-2793 - Bugzilla

OpenCVE Enrichment

Updated: 2026-04-15T17:15:10Z

Weaknesses

CWE-787

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object