CVE-2026-12305
Description
A high-severity memory safety bug in Firefox was fixed in version 152 and Firefox ESR 140.12.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A high-severity memory safety bug in Firefox was fixed in version 152 and Firefox ESR 140.12.
Vulnerability
A memory safety bug, classified as CVE-2026-12305, affects Mozilla Firefox. The specific location and conditions of the vulnerability are not detailed in the available references. Affected versions include Firefox prior to 152 and Firefox ESR prior to 140.12 [1][2].
Exploitation
No exploitation details have been disclosed in the public references. The lack of technical description prevents assessment of the required attacker privileges or attack vector.
Impact
The vulnerability carries a high severity rating per Mozilla’s advisory [1][2]. The exact impact (such as arbitrary code execution or data disclosure) is not specified in the available documentation.
Mitigation
The vulnerability is fixed in Firefox 152 and Firefox ESR 140.12, both released on June 16, 2026 [1][2]. Users are advised to update to these versions. No workaround is available.
AI Insight generated on Jun 16, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <152
- Range: <152, <140.12
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
5News mentions
0No linked articles in our index yet.