VulnerableCode Package Details - pkg:mozilla/Firefox%20ESR@140.8.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:mozilla/Firefox%20ESR@140.8.0

purl	pkg:mozilla/Firefox%20ESR@140.8.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-1u8u-pnq3-t7ae	Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, and Thunderbird < 140.8.	CVE-2026-2757

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:16:34.442203+00:00	Mozilla Importer	Fixing	VCID-1u8u-pnq3-t7ae	https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2026/mfsa2026-15.yml	38.0.0