A vulnerability was found in Mozilla Firefox up to 140.10/150 and classified as critical . This issue affects some unknown processing of the component JAR . Such manipulation leads to integer overflow. This vulnerability is documented as CVE-2026-8956 . The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.