DNA View

Critical Severity Vulnerability

This vulnerability has been rated as Critical severity. Immediate action is recommended.

CVE-2026-0879

Critical

Low Medium High Critical

9.8

CVSS Score

Published: Jan 13, 2026

Last Modified: Jan 14, 2026

Vulnerability Description

Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32, and Firefox ESR < 140.7.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

References & Resources

https://bugzilla.mozilla.org/show_bug.cgi?id=2004602
security@mozilla.org
https://www.mozilla.org/security/advisories/mfsa2026-01/
security@mozilla.org
https://www.mozilla.org/security/advisories/mfsa2026-02/
security@mozilla.org
https://www.mozilla.org/security/advisories/mfsa2026-03/
security@mozilla.org

Severity Details

9.8

out of 10.0

Critical

Key Information

Published Date: January 13, 2026

External Resources

NIST NVD

National Vulnerability Database

CVE Details

Detailed vulnerability info

MITRE CVE

Official CVE record

CVE Vulnerabilities

Posts & Pages