Mozilla Products Multiple Vulnerabilities

Release Date: 18 Jun 2026

RISK: Medium Risk

TYPE: Clients - Browsers

Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, security restriction bypass, spoofing and sensitive information disclosure on the targeted system.

Impact

Denial of Service
Remote Code Execution
Information Disclosure
Security Restriction Bypass
Elevation of Privilege
Spoofing

System / Technologies affected

Versions prior to:

Firefox 152
Firefox ESR 115.37
Firefox ESR 140.12
Firefox for iOS 152.0
Thunderbird 140.12
Thunderbird 152

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

Firefox 152
Firefox ESR 115.37
Firefox ESR 140.12
Firefox for iOS 152.0
Thunderbird 140.12
Thunderbird 152

Vulnerability Identifier

CVE-2026-12289
CVE-2026-12290
CVE-2026-12291
CVE-2026-12292
CVE-2026-12293
CVE-2026-12294
CVE-2026-12295
CVE-2026-12296
CVE-2026-12297
CVE-2026-12298
CVE-2026-12299
CVE-2026-12300
CVE-2026-12301
CVE-2026-12302
CVE-2026-12303
CVE-2026-12304
CVE-2026-12305
CVE-2026-12306
CVE-2026-12307
CVE-2026-12308
CVE-2026-12309
CVE-2026-12310
CVE-2026-12311
CVE-2026-12312
CVE-2026-12313
CVE-2026-12314
CVE-2026-12315
CVE-2026-12316
CVE-2026-12317
CVE-2026-12318
CVE-2026-12319
CVE-2026-12320
CVE-2026-12321
CVE-2026-12322
CVE-2026-12323
CVE-2026-12324
CVE-2026-12325
CVE-2026-12326
CVE-2026-12327
CVE-2026-12328
CVE-2026-12329
CVE-2026-12330
CVE-2026-53899
CVE-2026-53900

Source

Mozilla

2026年6月18日星期四