CVE-2026-8946

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published May 19, 2026

Vendor unknown

Description

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, and Firefox ESR 140.11.

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2029070
https://www.mozilla.org/security/advisories/mfsa2026-46/
https://www.mozilla.org/security/advisories/mfsa2026-47/
https://www.mozilla.org/security/advisories/mfsa2026-48/