PatchSiren cyber security CVE debrief
CVE-2026-12293 Mozilla CVE debrief
CVE-2026-12293 is a use-after-free vulnerability in the Graphics: WebGPU component of Firefox. This issue was fixed in Firefox 152. The vulnerability was published on [cvePublishedAt] and has not been associated with a CVSS score or severity level.
- Vendor
- Mozilla
- Product
- Firefox
- CVSS
- CRITICAL 9.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-17
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-17
Who should care
Users of Firefox, particularly those who handle sensitive data or require high security standards, should be aware of this vulnerability and ensure they are running Firefox 152 or later.
Technical summary
The vulnerability is a use-after-free issue in the Graphics: WebGPU component of Firefox. This type of vulnerability occurs when the program attempts to use memory after it has been freed, potentially leading to crashes or code execution.
Defensive priority
High
Recommended defensive actions
- Update Firefox to version 152 or later.
Evidence notes
The CVE was published on [cvePublishedAt] and has been linked to Mozilla as the affected vendor.
Official resources
CVE-2026-12293 was published on 2026-06-16T13:16:29.553Z and was modified on 2026-06-16T13:16:29.553Z.