Memory Safety Vulnerabilities in Firefox and Thunderbird from Mozilla
CVE-2026-2807

Currently unrated

Key Information:

Vendor

Mozilla
Status
Firefox
Thunderbird
Vendor
CVE Published:
24 February 2026

What is CVE-2026-2807?

Mozilla's Firefox and Thunderbird versions prior to 148 contain memory safety bugs that may potentially allow an attacker to exploit memory corruption issues. These vulnerabilities could be exploited to execute arbitrary code under certain conditions. Users are advised to update to the latest versions to mitigate these security risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Firefox < 148

Thunderbird < 148

References

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1756056%2...
https://www.mozilla.org/security/advisories/mfsa2026-13/
https://www.mozilla.org/security/advisories/mfsa2026-16/

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Agi Sferro, Andrew McCreight, Randell Jesup, Tom Schuster
JSON
.