CVE-2026-4725
CRITICAL
mozilla
NVD
CVSS Score
10
Severity
CRITICAL
Published
Mar 24, 2026
Vendor
mozilla
Description
Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149 and Thunderbird < 149.