CVE-2026-14241

CRITICAL

Memory safety bugs fixed in Firefox 152.0.4

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-14241. PoCs published by HermesNA-1.

AI-analyzed exploit summary This repository contains an auto-generated stub module for CVE-2026-14241, a collection of memory safety bugs in Firefox 152.0.3. The code includes placeholder methods (`check` and `run`) with no actual exploit implementation, only references to Mozilla Bugzilla entries for further research.

Description

Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 152.0.4.

Exploits (1)

github STUB 1 stars
by HermesNA-1 · pythonpoc
https://github.com/HermesNA-1/SnakeSploit/tree/main/data/modules_generated/cve-2026-14241_memory_safety_bugs.py

This repository contains an auto-generated stub module for CVE-2026-14241, a collection of memory safety bugs in Firefox 152.0.3. The code includes placeholder methods (`check` and `run`) with no actual exploit implementation, only references to Mozilla Bugzilla entries for further research.

Classification
Stub 98%
Attack Type
Other
Complexity
Complex
Reliability
Theoretical
Target: Firefox 152.0.3
No auth needed
Prerequisites: Network access to the target (RHOSTS/RPORT) · Firefox 152.0.3 installed on the target
mistral-large-3 · analyzed Jul 09, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 9.8
EPSS 0.0023
EPSS Percentile 14.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-119 CWE-787
Status published
Products (2)
mozilla/firefox 152.0.3
Mozilla/Firefox 152.0.4
Published Jun 30, 2026
Tracked Since Jun 30, 2026