QwikSec

Security Database

CVE

CWE

Training

CVE-2026-2774

Published: Feb 24, 2026

Modified: Apr 13, 2026

PUBLISHED

Description

Integer overflow in the Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

Vendor	Product	Versions
Mozilla	Firefox	unaffected `115.33 - <= 115.` unaffected `140.8 - <= 140.` unaffected `148 - <= *`
Mozilla	Thunderbird	unaffected `140.8 - <= 140.` unaffected `148 - <= `

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2014883

https://www.mozilla.org/security/advisories/mfsa2026-13/

https://www.mozilla.org/security/advisories/mfsa2026-14/

https://www.mozilla.org/security/advisories/mfsa2026-15/

https://www.mozilla.org/security/advisories/mfsa2026-16/

https://www.mozilla.org/security/advisories/mfsa2026-17/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.