HIGHCVE-2026-2781Published Modified CNA mozilla
CVE-2026-2781: Integer overflow in the Libraries component in NSS
Integer overflow in the Libraries component in NSS. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, Thunderbird 140.8, and Firefox ESR 115.35.
Metrics
- CVSS v3.1
- 8.8
- Severity
- HIGH
- Fixed in
- 115.35
- Affected Products
- 2
Fix available
115.35140.8148
Affected packages
- Mozilla / FirefoxFixed in 115.35, 140.8, 148
- Mozilla / ThunderbirdFixed in 140.8, 148
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H