CVE-2026-12324
7.3 HIGHIncorrect boundary conditions in the Graphics: CanvasWebGL component
Published: 2026-06-16 · Last updated: 2026-06-16
Severity and scoring
- CVSS
- 7.3 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
- CWE
- CWE-703
Description
Incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-12324
- [Other]https://bugzilla.mozilla.org/show_bug.cgi?id=2038444
- [Other]https://www.mozilla.org/security/advisories/mfsa2026-57/
- [Other]https://www.mozilla.org/security/advisories/mfsa2026-58/
- [Other]https://www.mozilla.org/security/advisories/mfsa2026-60/
- [Other]https://www.mozilla.org/security/advisories/mfsa2026-61/
Related CVEs
Same CWE
- CVE-2026-44893 — Netty is a network application framework for development of protocol servers and clients (7.5 HIGH)
- CVE-2026-47316 — Improper Check or Handling of Exceptional Conditions vulnerability in Samsung Open Source Escargot allows Input Data Manipulation (5.5 MEDIUM)