https://feed.craftedsignal.io/tags/cve-2026-4690/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 24 Mar 2026 13:16:04 +0000https://feed.craftedsignal.io/briefs/2024-01-cve-2026-4690-firefox-sandbox-escape/Tue, 24 Mar 2026 13:16:04 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2024-01-cve-2026-4690-firefox-sandbox-escape/A sandbox escape vulnerability, identified as CVE-2026-4690, exists in the XPCOM component of Mozilla Firefox, Firefox ESR, and Thunderbird due to incorrect boundary conditions and an integer overflow, potentially allowing an attacker to execute arbitrary code outside the sandbox.<p>CVE-2026-4690 is a critical vulnerability affecting Mozilla Firefox, Firefox ESR, and Thunderbird. The root cause lies in incorrect boundary conditions coupled with an integer overflow within the XPCOM component. Successful exploitation allows an attacker to bypass the sandbox protections, potentially leading to arbitrary code execution outside the confines of the browser&rsquo;s security measures. The vulnerability impacts Firefox versions earlier than 149, Firefox ESR versions prior to 115.34 and…</p> highadvisorysandbox escapeinteger overflowmozilla firefoxmozilla thunderbirdcve-2026-4690