THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-0878 (HIGH 8.0) — Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.

[NVD] CVE-2026-0878 (HIGH 8.0) — Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.

lownvdPublished 2026-01-13

CVE-2026-0878 CVSS: 8.0 HIGH Published: 2026-01-13T14:16:38.367

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-0878