A vulnerability described as critical has been identified in Mozilla Firefox up to 140.10/150 . This impacts an unknown function of the component Audio/Video . Such manipulation leads to integer overflow. This vulnerability is referenced as CVE-2026-8954 . It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.