Boundary Condition Flaw in NSS Libraries of Mozilla Firefox
CVE-2026-12318

7.3HIGH

Key Information:

Vendor

Mozilla

Vendor
CVE Published:
16 June 2026

What is CVE-2026-12318?

A vulnerability exists in the Libraries component of the NSS (Network Security Services) within Mozilla Firefox due to incorrect boundary conditions. This issue may lead to unexpected behavior or potential exploitation. It has been addressed in Firefox version 152, enhancing the security of the affected libraries.

Affected Version(s)

Firefox 152

Thunderbird 152

References

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Haruto Kimura
.