CVE-2026-2794 PUBLISHED

Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android

Assigner: mozilla
Reserved: 19.02.2026 Published: 24.02.2026 Updated: 24.02.2026

Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. This vulnerability affects Firefox < 148.

Product Status

Vendor	Mozilla
Product	Firefox
Versions	affected from unspecified to 148 (excl.)

Credits

stevej

References