Back to search
CVE-2026-8953
Published: May 19, 2026
Modified: May 19, 2026
PUBLISHED
Description
Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
| Vendor | Product | Versions |
|---|---|---|
Mozilla | Firefox | unaffected 115.36 - <= 115.*unaffected 140.11 - <= 140.*unaffected 151 - <= * |
Mozilla | Thunderbird | unaffected 140.11 - <= 140.*unaffected 151 - <= * |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now