CVE-2026-8390 PUBLISHED

Use-after-free in the JavaScript: WebAssembly component

Assigner: mozilla
Reserved: 12.05.2026 Published: 12.05.2026 Updated: 12.05.2026

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.0.3.

Product Status

Vendor Mozilla
Product Firefox
Versions
  • unaffected from 150.0.3 to * (incl.)

Credits

  • OpenAI Preparedness, Bill Demirkapi

References