Moole Vulnerability Database

Find real vulnerabilities before they ship

High

CVE-2026-8952

Privilege escalation in the Application Update component. This vulnerability was fixed in Firefox 151 and Thunderbird 151.

VectorNETWORK

PublishedMay 19, 2026, 14:16

Published Bysecurity@mozilla.org

Base Score

Score8.8

No affected versions found.

CWE-269

Base Score

8.8

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Base SeverityHigh

Version

3.1

Attack Vector (AV)

NETWORK