Spoofing Vulnerability Affecting Mozilla Firefox
CVE-2026-12323

5.4MEDIUM

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 16 June 2026

What is CVE-2026-12323?

A spoofing vulnerability has been identified in the DOM: Core & HTML component of Mozilla Firefox, which could potentially allow attackers to impersonate legitimate users. This issue was addressed in Firefox version 152, ensuring enhanced security for users. It is advisable for users to upgrade to the latest version to mitigate any risk associated with this vulnerability. For further details, refer to the Mozilla security advisory and the Bugzilla entry.

Affected Version(s)

Firefox 152

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2035027

https://www.mozilla.org/security/advisories/mfsa2026-57/

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2026
Vulnerability Reserved
Jun 15, 2026

Credit

Jody Ritonga

CVE-2026-12323 Data

JSON