CVE-2026-4723

CVE-2026-4723: Use-after-free in the JavaScript Engine component

Published March 24, 2026
Last update April 13, 2026
View on NVD All CVEs

CVSS base score

What the vulnerability does

Description

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149 and Thunderbird 149.

Key dates

Disclosure timeline

March 24, 2026 CVE published
April 13, 2026 Record updated