CVE-2026-8388

CVE-2026-8388: Incorrect boundary conditions in the JavaScript Engine: JIT component

Published May 12, 2026
Last update May 19, 2026
View on NVD All CVEs

CVSS base score

What the vulnerability does

Description

Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.

Key dates

Disclosure timeline

May 12, 2026 CVE published
May 19, 2026 Record updated