Home / Vulnerability Intelligence / CVE-2026-4700

CVE-2026-4700 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: March 24, 2026

Firefox - Mitigation Bypass

Published: March 24, 2026Updated: March 24, 2026Remote Exploitable

Overview

Firefox < 149 and Firefox ESR < 140.9 contain a mitigation bypass vulnerability in the Networking: HTTP component, letting attackers bypass security mitigations, exploit requires no special conditions.

Severity & Score

Severity: Critical

CVSS Score: 9.8

EPSS Score: 1.7%(Probability of exploitation in next 30 days)

Impact

Attackers can bypass security mitigations, potentially leading to further exploitation or compromise.

Mitigation

Update to Firefox 149, Firefox ESR 140.9 or later versions.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 24, 2026

🔴 CVE-2026-4700 - Critical (9.8) Mitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thunderbird < 149, and Thunderbird < 140.9. 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4700/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-4700
Severity: Critical
CVSS Score: 9.8
Type: undefined
Status: modified
EPSS: 1.7%
Social Posts: 1

CWE

NVD-CWE-noinfo

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

1.7%Probability of exploitation in the next 30 days