Zen-browser Desktop
3 CVEs affecting Zen-browser Desktop. Latest disclosed: 2026-05-11. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-41431 | High | 8.0 | 2026-05-11 | Zen is a firefox-based browser. Prior to 1.19.9b, Zen Browser ships a Mozilla Application Resource (MAR) updater (org.mozilla.updater) that has had all MAR sig… |
CVE-2026-44659 | Medium | 4.7 | 2026-05-11 | Zen is a firefox-based browser. Prior to 1.19.12b, the ZEN Browser incorrectly truncates long hostnames in the address bar and shows only the attacker-controll… |
CVE-2026-44658 | Low | 2.4 | 2026-05-11 | Zen is a firefox-based browser. Prior to 1.19.12b, RSS feed URLs entered by the user are validated to http: or https: in promptForFeedUrl, but item links insid… |