Copyright © 2012 Red Hat, Inc. All rights reserved. Moderate 2026-05-19T12:29:46 firefox: Sandbox escape due to use-after-free in the Disability Access APIs component 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CWE-825

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to use-after-free in the Disability Access APIs component

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory. Red Hat Enterprise Linux 10 2026-05-27T00:00:00Z RHSA-2026:21380 firefox-0:140.11.0-1.el10_2 Red Hat Enterprise Linux 8 2026-05-27T00:00:00Z RHSA-2026:21382 firefox-0:140.11.0-1.el8_10 Red Hat Enterprise Linux 9 2026-05-27T00:00:00Z RHSA-2026:21378 firefox-0:140.11.0-1.el9_8 Red Hat Enterprise Linux 9 2026-05-27T00:00:00Z RHSA-2026:21381 thunderbird-0:140.11.0-1.el9_8 Red Hat Enterprise Linux 10 Affected rhel10/firefox-flatpak Red Hat Enterprise Linux 10 Affected rhel10/thunderbird-flatpak Red Hat Enterprise Linux 10 Affected thunderbird Red Hat Enterprise Linux 6 Out of support scope firefox Red Hat Enterprise Linux 6 Out of support scope thunderbird Red Hat Enterprise Linux 7 Affected firefox Red Hat Enterprise Linux 7 Out of support scope thunderbird Red Hat Enterprise Linux 8 Affected thunderbird https://www.cve.org/CVERecord?id=CVE-2026-8953 https://nvd.nist.gov/vuln/detail/CVE-2026-8953 https://www.mozilla.org/security/advisories/mfsa2026-48/#CVE-2026-8953 https://www.mozilla.org/security/advisories/mfsa2026-51/#CVE-2026-8953