Description
Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability was fixed in Firefox 149.0.2, Firefox ESR 140.9.1, Thunderbird 149.0.2, and Thunderbird 140.9.1.
Published: 2026-04-07
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Potential for arbitrary code execution through a graphics rendering flaw
Action: Patch Now
AI Analysis

Impact

An integer overflow in the Graphics: Text component allows an attacker to supply crafted content that can corrupt memory during text rendering. This flaw can lead to the execution of arbitrary code or cause the application to crash, denying service. The weakness is a classic integer overflow (CWE‑190) affecting how the bounds of a text buffer are calculated, potentially creating a vulnerability where the code runs with the privileges of the application.

Affected Systems

The vulnerability affects Mozilla Firefox, including the main and ESR releases, as well as Mozilla Thunderbird. The affected versions are those prior to Firefox 149.0.2 and Firefox ESR 140.9.1, and prior to Thunderbird 149.0.2 and Thunderbird 140.9.1. Users running older releases of these browsers are at risk.

Risk and Exploitability

The CVSS score of 8.8 indicates high severity, and the EPSS score of less than 1% suggests a low current exploitation probability. The vulnerability is not listed in the CISA KEV catalog. Likely exploitation would involve an attacker delivering malicious content—such as a specially crafted webpage or mail—rendered by the affected browser or mail client, triggering the integer overflow during text drawing. Without official exploitation evidence, the exact attack vector is inferred based on the component description.

Generated by OpenCVE AI on April 13, 2026 at 16:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Firefox update (149.0.2 or newer) or the ESR update (140.9.1 or newer).
  • Apply the latest Thunderbird update (149.0.2 or newer) or the ESR update (140.9.1 or newer).
  • If updates cannot be applied immediately, avoid rendering untrusted text content in affected browsers or mail clients until a patch is available.

Generated by OpenCVE AI on April 13, 2026 at 16:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4526-1 firefox-esr security update
Debian DLA Debian DLA DLA-4534-1 thunderbird security update
Debian DSA Debian DSA DSA-6202-1 firefox-esr security update
Debian DSA Debian DSA DSA-6211-1 thunderbird security update
History

Mon, 13 Apr 2026 14:30:00 +0000

Type Values Removed Values Added
Description Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability affects Firefox < 149.0.2, Firefox ESR < 140.9.1, Thunderbird < 149.0.2, and Thunderbird < 140.9.1. Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability was fixed in Firefox 149.0.2, Firefox ESR 140.9.1, Thunderbird 149.0.2, and Thunderbird 140.9.1.

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla firefox Esr
Mozilla thunderbird
Vendors & Products Mozilla firefox Esr
Mozilla thunderbird

Wed, 08 Apr 2026 12:30:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Important

Tue, 07 Apr 2026 20:45:00 +0000

Type Values Removed Values Added
Description Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability affects Firefox < 149.0.2 and Firefox ESR < 140.9.1. Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability affects Firefox < 149.0.2, Firefox ESR < 140.9.1, Thunderbird < 149.0.2, and Thunderbird < 140.9.1.
References

Tue, 07 Apr 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
Vendors & Products Mozilla
Mozilla firefox

Tue, 07 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Description Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability affects Firefox < 149.0.2 and Firefox ESR < 140.9.1.
Title Incorrect boundary conditions, integer overflow in the Graphics: Text component
Weaknesses CWE-190
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Mozilla Firefox Firefox Esr Thunderbird
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T13:51:28.140Z

Reserved: 2026-04-07T12:43:12.349Z

Link: CVE-2026-5732

cve-icon Vulnrichment

Updated: 2026-04-07T14:27:50.789Z

cve-icon NVD

Status : Modified

Published: 2026-04-07T13:16:47.463

Modified: 2026-04-13T15:17:46.467

Link: CVE-2026-5732

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-07T12:43:12Z

Links: CVE-2026-5732 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-14T16:41:03Z

Weaknesses