{"id":"CVE-2026-2776","details":"Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software. This vulnerability affects Firefox \u003c 148, Firefox ESR \u003c 115.33, Firefox ESR \u003c 140.8, Thunderbird \u003c 148, and Thunderbird \u003c 140.8.","modified":"2026-04-16T00:00:19.614343059Z","published":"2026-02-24T14:16:26.023Z","related":["ALSA-2026:3338","ALSA-2026:3339","ALSA-2026:3361","ALSA-2026:3515","ALSA-2026:3516","ALSA-2026:3517","SUSE-SU-2026:0812-1","SUSE-SU-2026:0871-1","SUSE-SU-2026:0880-1","openSUSE-SU-2026:10242-1","openSUSE-SU-2026:10248-1","openSUSE-SU-2026:10257-1","openSUSE-SU-2026:20365-1","openSUSE-SU-2026:20391-1"],"references":[{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2026-17/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2026-13/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2026-14/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2026-15/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2026-16/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2015266"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-2776.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"115.33.0"}]},{"events":[{"introduced":"0"},{"fixed":"148.0"}]},{"events":[{"introduced":"128.0"},{"fixed":"140.8.0"}]},{"events":[{"introduced":"0"},{"fixed":"140.8.0"}]},{"events":[{"introduced":"0"},{"fixed":"148.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"}]}