JVN iPedia http://jvndb.jvn.jp Advisory JVNDB-2026-012443 JavaScriptエンジンコンポーネントに存在するUse-after-freeの脆弱性です。この脆弱性はFirefox 150、Firefox ESR 115.35、Firefox ESR 140.10、Thunderbird 150、およびThunderbird 140.10で修正されました。 cpe:/a:mozilla:firefox cpe:/a:mozilla:thunderbird https://jvndb.jvn.jp/ja/contents/2026/JVNDB-2026-012443.html Common Vulnerabilities and Exposures (CVE) CVE-2026-6754 https://www.cve.org/CVERecord?id=CVE-2026-6754 National Vulnerability Database (NVD) CVE-2026-6754 https://nvd.nist.gov/vuln/detail/CVE-2026-6754 JVNDB CWE-416 https://cwe.mitre.org/data/definitions/416.html Mozilla Foundation Security Advisory Security Vulnerabilities fixed in Firefox ESR 115.35 — Mozilla https://www.mozilla.org/security/advisories/mfsa2026-31/ Mozilla Foundation Security Advisory Security Vulnerabilities fixed in Firefox ESR 140.10 — Mozilla https://www.mozilla.org/security/advisories/mfsa2026-32/ Mozilla Foundation Security Advisory Security Vulnerabilities fixed in Thunderbird 150 — Mozilla https://www.mozilla.org/security/advisories/mfsa2026-33/ Mozilla Foundation Security Advisory Security Vulnerabilities fixed in Thunderbird 140.10 — Mozilla https://www.mozilla.org/security/advisories/mfsa2026-34/ Mozilla Foundation Security Advisory Security Vulnerabilities fixed in Firefox 150 — Mozilla https://www.mozilla.org/security/advisories/mfsa2026-30/ 2026-04-24T11:40:11+09:00 2026-04-24T11:40:11+09:00