High severity7.3NVD Advisory· Published May 12, 2026· Updated May 14, 2026
CVE-2026-8390
CVE-2026-8390
Description
Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.0.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <150.0.3
Patches
Vulnerability mechanics
References
2- www.mozilla.org/security/advisories/mfsa2026-45/nvdVendor Advisory
- bugzilla.mozilla.org/show_bug.cginvdPermissions Required
News mentions
1- OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security FlawsThe Hacker News · Jun 23, 2026