Sandbox escape in the DOM: Navigation component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, and Firefox ESR 115.37.
| Score | Percentile |
|---|---|
| 0.39% | 31.09% |
| Base score | Version | Severity | Vector |
|---|---|---|---|
| 9.6 | 3.1 | — |
|
| Type | Value |
|---|---|
| GHSA | GHSA-pc23-5ppw-9j7m ↗ |
| CVE | CVE-2026-12295 ↗ |