Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Mozilla | Firefox | affected |
|
||||||
| Mozilla | Firefox ESR | affected |
|
||||||
| Mozilla | Firefox ESR | affected |
|
||||||
| Mozilla | Thunderbird | affected |
|
||||||
| Mozilla | Thunderbird | affected |
|
No data.
No data.
No data.
Subscriptions
No data.
Tracking
Sign in to view the affected projects.
No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Tue, 24 Mar 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Sandbox escape in the Responsive Design Mode component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9. | Sandbox escape in the Responsive Design Mode component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. |
| References |
|
Tue, 24 Mar 2026 12:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Sandbox escape in the Responsive Design Mode component. This vulnerability affects Firefox < 149, Firefox ESR < 115.34, and Firefox ESR < 140.9. | |
| Title | Sandbox escape in the Responsive Design Mode component | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: mozilla
Published:
Updated: 2026-03-24T20:27:23.041Z
Reserved: 2026-03-23T23:21:46.185Z
Link: CVE-2026-4692
Vulnrichment
No data.
NVD
Status : Undergoing Analysis
Published: 2026-03-24T13:16:05.040
Modified: 2026-03-24T21:16:30.860
Link: CVE-2026-4692
Redhat
No data.
OpenCVE Enrichment
No data.
No weakness.