CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 3 days ago•8 views

EUVD-2026-33990

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 151.0.3...

5.8AI score0.00033EPSS

RedHat Linux•added 2026/05/27 4:12 p.m.•11 views

firefox: thunderbird: Incorrect boundary conditions in the JavaScript Engine: JIT component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript Engine: JIT component...

6.5CVSS5.7AI score0.00043EPSS

Exploits0References6

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в pcre2

A out-of-bounds read was discovered in PCRE before version 10.34, where the pattern \X was JIT-compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, as it could allow an attacker to cause the...

7.5CVSS6.4AI score0.00089EPSS

Exploits1References2

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: A “off-by-one” error occurred in buildprologue. Vincent reported that running BPF programs with tailcalls on LoongArch causes a kernel hard lockup. Debugging the issue revealed that the JIT-compiled code missed a...

5.5CVSS6.2AI score0.00019EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-6.1, linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: The BR/EDR JUSTWORKS method has been aligned with LE. This alignment of the BR/EDR JUST WORKS method with LE was implemented since version 92516cd97fd4. „Bluetooth: Always request for user confirmation for Ju...

5.5CVSS6.4AI score0.02589EPSS

RedhatCVE•added 2026/05/19 5:32 p.m.•6 views

CVE-2026-8388

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript Engine: JIT component...

7.5CVSS5.7AI score0.00043EPSS

Exploits0References5

SUSE CVE•added 2026/05/18 1:22 p.m.•9 views

SUSE CVE-2026-8388

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11...

Fedora•added 2026/05/17 1:27 a.m.•11 views

Exploits0References7

[SECURITY] Fedora 44 Update: pypy-7.3.22-2.fc44

PyPy's implementation of Python, featuring a Just-In-Time compiler on some CPU architectures, and various optimized implementations of the standard types strings, dictionaries, etc This build of PyPy has JIT-compilation enabled...

4.6CVSS5.8AI score0.00018EPSS

Exploits0

EUVD•added 2026/05/12 3:31 p.m.•7 views

EUVD-2026-29462

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3...

NVD•added 2026/05/12 2:17 p.m.•4 views

CVE-2026-8388

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11...

6.5CVSS0.00043EPSS

Exploits0References5

UbuntuCve•added 2026/05/12 2:17 p.m.•6 views

CVE-2026-8389

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3...

7.3CVSS5.8AI score0.00053EPSS

OSV•added 2026/05/12 2:17 p.m.•1 views

UBUNTU-CVE-2026-8389

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3...

7.3CVSS5.8AI score0.00053EPSS

OSV•added 2026/05/12 2:17 p.m.•4 views

UBUNTU-CVE-2026-8388

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11...

CVE•added 2026/05/12 12:36 p.m.•14 views

CVE-2026-8388

CVE-2026-8388 : The issue is described as incorrect boundary conditions in the JavaScript Engine's JIT component. Public references in the connected documents confirm Mozilla Firefox as the affected product and that the vulnerability was fixed in Firefox 150.0.3. The CVSS base score is 6.5 (Mediu...

Exploits0References5Affected Software1

AlpineLinux•added 2026/05/12 12:36 p.m.•7 views

CVE-2026-8388

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11...

CNNVD•added 2026/05/12 12:0 a.m.•3 views

Exploits0References5

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open-source web browser developed by the Mozilla Foundation in the United States. Versions of Mozilla Firefox prior to 150.0.3 contained a security vulnerability, which was caused by a compilation error in the JavaScript Engine’s JIT component...

7.3CVSS5.8AI score0.00053EPSS

Exploits0References1

OSV•added 2026/05/09 12:32 p.m.•7 views

OESA-2026-2234 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing struct bpfplt contains a u64 target field. Currently, the BPF JIT allocator requests ...

8.8CVSS5.8AI score0.00071EPSS

Exploits0References9

SUSE CVE•added 2026/05/06 1:42 a.m.•2 views

SUSE CVE-2026-31773

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SMP: derive legacy responder STK authentication from MITM state The legacy responder path in smprandom currently labels the stored STK as authenticated whenever pendingseclevel is BTSECURITYHIGH. That reflects what the...

8.8CVSS5.7AI score0.00079EPSS