VDB
WID-SEC-W-2026-0497
WID-SEC-W-2026-0497
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Firefox ist ein Open Source Web Browser. Firefox ist ein Open Source Web Browser. ESR ist die Variante mit verlängertem Support. Thunderbird ist ein Open Source E-Mail Client.
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| RESF Rocky Linux | ||
| Mozilla Thunderbird 140.8 | ||
| SUSE Linux | ||
| Mozilla Firefox ESR <115.33 | ||
| Debian Linux | ||
| Oracle Linux | ||
| Mozilla Firefox ESR 115.33 | ||
| Mozilla Thunderbird <148 | ||
| SUSE openSUSE | ||
| Red Hat Enterprise Linux | ||
| Mozilla Firefox iOS 147.4 | ||
| Mozilla Thunderbird <140.8 | ||
| Mozilla Firefox 148 | ||
| Mozilla Firefox <148 | ||
| Mozilla Firefox ESR <140.8 | ||
| Amazon Linux 2 | ||
| Mozilla Firefox iOS <147.4 | ||
| Mozilla Thunderbird 148 | ||
| IGEL OS | ||
| Mozilla Firefox ESR 140.8 |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0497.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0497 (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-12/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-13/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-14/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-15/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-16/ (circl)
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-17/ (circl)
- https://access.redhat.com/errata/RHSA-2026:3339 (circl)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QOYQZDLF7VEL3ZUY46SS34MOSIMJTZ3L/ (circl)
…and 52 more exploits
Timeline
- Feb 24, 2026 CVE Published
- Mar 25, 2026 CVE Updated
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0497.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0497 advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-12/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-13/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-14/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-15/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-16/ url
- https://www.mozilla.org/en-US/security/advisories/mfsa2026-17/ url
- https://access.redhat.com/errata/RHSA-2026:3339 url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QOYQZDLF7VEL3ZUY46SS34MOSIMJTZ3L/ url
- https://lists.debian.org/debian-security-announce/2026/msg00057.html url
- https://access.redhat.com/errata/RHSA-2026:3361 url
- https://access.redhat.com/errata/RHSA-2026:3338 url
- https://lists.debian.org/debian-security-announce/2026/msg00058.html url
- http://linux.oracle.com/errata/ELSA-2026-3339.html url
- https://errata.build.resf.org/RLSA-2026:3361 url
- https://errata.build.resf.org/RLSA-2026:3339 url
- https://errata.build.resf.org/RLSA-2026:3338 url
- https://linux.oracle.com/errata/ELSA-2026-3361.html url
- http://linux.oracle.com/errata/ELSA-2026-3338.html url
…and 42 more