CVE-2026-12297
CRITICALSandbox escape due to incorrect boundary conditions in the Networking component
Title source: cnaDescription
Sandbox escape due to incorrect boundary conditions in the Networking component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12.
References (25)
Core 25
Core References
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:27717
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:27733
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:27734
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:29940
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:30846
Vendor Advisory
https://access.redhat.com/security/cve/CVE-2026-12297
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2489235
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:33445
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:36100
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:36101
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:36102
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:36103
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:37210
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:37391
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:38506
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:38750
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:38751
Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:38753
Scores
CVSS v3
9.6
EPSS
0.0039
EPSS Percentile
31.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-119
CWE-653
Status
published
Products (9)
mozilla/firefox
< 115.37.0
mozilla/firefox
< 152.0.0
Mozilla/Firefox
115.37 - 115.*
Mozilla/Firefox
140.12 - 140.*
Mozilla/Firefox
152
mozilla/thunderbird
< 140.12.0
mozilla/thunderbird
< 152.0.0
Mozilla/Thunderbird
140.12 - 140.*
Mozilla/Thunderbird
152
Published
Jun 16, 2026
Tracked Since
Jun 16, 2026