CVE-2026-2769 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: February 25, 2026
Firefox - Use After Free
Overview
Firefox < 148, Firefox ESR < 115.33, and Firefox ESR < 140.8 contain a use-after-free vulnerability in the Storage: IndexedDB component, letting attackers cause memory corruption or remote code execution, exploit requires no special conditions.
Severity & Score
Impact
Attackers can cause memory corruption or execute arbitrary code remotely, potentially compromising the system.
Mitigation
Update to Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8 or later versions.
References
- https://www.mozilla.org/security/advisories/mfsa2026-13/
- https://www.mozilla.org/security/advisories/mfsa2026-14/
- https://www.mozilla.org/security/advisories/mfsa2026-15/
- https://www.mozilla.org/security/advisories/mfsa2026-16/
- https://www.mozilla.org/security/advisories/mfsa2026-17/
- https://bugzilla.mozilla.org/show_bug.cgi?id=2014550
Social Media Activity(2 posts)
š CVE-2026-2769 - High (8.8) Use-after-free in the Storage: IndexedDB component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, and Firefox ESR < 140.8. š https://www.thehackerwire.com/vulnerability/CVE-2026-2769/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original post
š CVE-2026-2769 - High (8.8) Use-after-free in the Storage: IndexedDB component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, and Firefox ESR < 140.8. š https://www.thehackerwire.com/vulnerability/CVE-2026-2769/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2026-2769
- Severity
- High
- CVSS Score
- 8.8
- Type
- use_after_free
- Status
- confirmed
- EPSS
- 0.0%
- Social Posts
- 2
CWE
- CWE-416
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H