Mozilla Products Multiple Vulnerabilities

Release Date: 25 Mar 2026

RISK: Medium Risk

TYPE: Clients - Browsers

Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, security restriction bypass, spoofing and sensitive information disclosure on the targeted system.

Impact

Denial of Service
Remote Code Execution
Elevation of Privilege
Security Restriction Bypass
Information Disclosure
Spoofing

System / Technologies affected

Versions prior to:

Firefox 149
Firefox ESR 115.34
Firefox ESR 140.9
Thunderbird 140.9
Thunderbird 149

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

Firefox 149
Firefox ESR 115.34
Firefox ESR 140.9
Thunderbird 140.9
Thunderbird 149

Vulnerability Identifier

CVE-2025-59375
CVE-2026-3889
CVE-2026-4371
CVE-2026-4684
CVE-2026-4685
CVE-2026-4686
CVE-2026-4687
CVE-2026-4688
CVE-2026-4689
CVE-2026-4690
CVE-2026-4691
CVE-2026-4692
CVE-2026-4693
CVE-2026-4694
CVE-2026-4695
CVE-2026-4696
CVE-2026-4697
CVE-2026-4698
CVE-2026-4699
CVE-2026-4700
CVE-2026-4701
CVE-2026-4702
CVE-2026-4704
CVE-2026-4705
CVE-2026-4706
CVE-2026-4707
CVE-2026-4708
CVE-2026-4709
CVE-2026-4710
CVE-2026-4711
CVE-2026-4712
CVE-2026-4713
CVE-2026-4714
CVE-2026-4715
CVE-2026-4716
CVE-2026-4717
CVE-2026-4718
CVE-2026-4719
CVE-2026-4720
CVE-2026-4721
CVE-2026-4722
CVE-2026-4723
CVE-2026-4724
CVE-2026-4725
CVE-2026-4726
CVE-2026-4727
CVE-2026-4728
CVE-2026-4729

Source

Mozilla

2026年4月1日星期三