THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-0879 (CRITICAL 9.8) — Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.

[NVD] CVE-2026-0879 (CRITICAL 9.8) — Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.

lownvdPublished 2026-01-13

CVE-2026-0879 CVSS: 9.8 CRITICAL Published: 2026-01-13T14:16:38.463

Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-0879