Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2106 matches found

RedhatCVE
RedhatCVEadded 4 days ago7 views

CVE-2026-12321

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: JIT miscompilation in the JavaScript: WebAssembly component...

5.4CVSS5.8AI score0.00159EPSS
Exploits0References5
AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Firefox, Thunderbird

Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

7.5CVSS6.1AI score0.00401EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Firefox, Thunderbird

The WebAssembly JIT might miscalculate the size of a return type, which could lead to a null read and result in a crash. Note: This issue only affected x86-32 platforms. Other platforms are unaffected.. This vulnerability affects Firefox ESR 78.10, Thunderbird 78.10, and Firefox 88...

6.5CVSS6.7AI score0.01208EPSS
Exploits0References1
AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Firefox, Thunderbird

Inconsistent data in the instruction and data cache when creating Wasm code can lead to a potentially exploitable crash.This bug only affects Firefox on ARM64 platforms.. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS7.1AI score0.01082EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Firefox

A type confusion bug in WebAssembly could be exploited by an attacker to potentially execute malicious code. This vulnerability affects Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1...

8.8CVSS7.1AI score0.00602EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/19 1:57 a.m.7 views

SUSE CVE-2026-12321

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.8AI score0.00159EPSS
Exploits0References3
NVD
NVDadded 2026/06/16 1:16 p.m.14 views

CVE-2026-12321

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS0.00159EPSS
Exploits0References3
OSV
OSVadded 2026/06/16 1:16 p.m.3 views

UBUNTU-CVE-2026-12321

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.8AI score0.00159EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/06/16 11:52 a.m.25 views

CVE-2026-12321 JIT miscompilation in the JavaScript: WebAssembly component

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

0.00159EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/06/16 11:52 a.m.6 views

CVE-2026-12321 JIT miscompilation in the JavaScript: WebAssembly component

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.2AI score0.00159EPSS
Exploits0References3
EUVD
EUVDadded 2026/06/16 11:52 a.m.7 views

EUVD-2026-37067

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.2AI score0.00159EPSS
Exploits0References3
CVE
CVEadded 2026/06/16 11:52 a.m.13 views

CVE-2026-12321

Summary: CVE-2026-12321 is a JIT miscompilation in the JavaScript: WebAssembly component. Affected products: Firefox and Thunderbird (WebAssembly/JS engine). Root cause: JIT miscompilation in the WebAssembly component. Impact: Not explicitly quantified beyond miscompilation; CVSS v3.1 base score ...

5.4CVSS5.2AI score0.00159EPSS
Exploits0References3Affected Software2
AlpineLinux
AlpineLinuxadded 2026/06/16 11:52 a.m.6 views

CVE-2026-12321

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.3AI score0.00159EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/06/16 12:0 a.m.9 views

PT-2026-49690

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 152 Thunderbird versions prior to 152 Description JIT miscompilation occurs in the JavaScript: WebAssembly component. Just-In-Time JIT compilation is a method used to improve the execution speed of programs by compili...

9.6CVSS6AI score0.0045EPSS
Exploits0References48
OSV
OSVadded 2026/06/15 9:17 p.m.4 views

UBUNTU-CVE-2026-47261

Wasmtime is a runtime for WebAssembly. In versions prior to 24.0.9, 36.0.10, and 44.0.2, when a filesystem preopen is given DirPerms::all and FilePerms::READ without FilePerms::WRITE, this access control mechanism can be bypassed via the wasip2 descriptor.open-at or wasip1 pathopen interfaces by...

7.5CVSS5.7AI score0.00357EPSS
Exploits0References3
NVD
NVDadded 2026/06/12 3:16 p.m.12 views

CVE-2026-47210

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, a sandbox escape vulnerability in vm2 allows arbitrary code execution in the host process when untrusted code is executed with async support on runtimes exposing WebAssembly JSPI WebAssembly.promising / WebAssembly.Suspending...

9.8CVSS0.00507EPSS
Exploits0References3
EUVD
EUVDadded 2026/06/12 2:17 p.m.8 views

EUVD-2026-36448

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, a sandbox escape vulnerability in vm2 allows arbitrary code execution in the host process when untrusted code is executed with async support on runtimes exposing WebAssembly JSPI WebAssembly.promising / WebAssembly.Suspending...

9.8CVSS6AI score0.00507EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/06/12 2:17 p.m.33 views

CVE-2026-47210 vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, a sandbox escape vulnerability in vm2 allows arbitrary code execution in the host process when untrusted code is executed with async support on runtimes exposing WebAssembly JSPI WebAssembly.promising / WebAssembly.Suspending...

9.8CVSS0.00507EPSS
Exploits0References3
CVE
CVEadded 2026/06/12 2:17 p.m.40 views

CVE-2026-47210

Summary : CVE-2026-47210 affects the vm2 sandbox prior to version 3.11.4, where a JSPI-backed Promise pathway can bypass Promise species hardening via WebAssembly.promising/WebAssembly.Suspending, potentially exposing a host-originated rejection object to attacker-controlled logic and breaking sa...

9.8CVSS6AI score0.00507EPSS
Exploits0References3
GithubExploit
GithubExploitadded 2026/06/11 3:15 a.m.51 views

Exploit for Type Confusion in Google Chrome

SSD Advisory – Google Chrome RCE Source: ssd-disclosure.co...

8.1CVSS7.9AI score0.19883EPSS
Exploits5
Rows per page
Query Builder