Cybersecurity defenses received a critical reinforcement this week as industry giants Mozilla, Google, Adobe, and Broadcom’s VMware rolled out a coordinated wave of urgent security patches to address multiple high-severity vulnerabilities. Leading the charge, Mozilla deployed Firefox version 152.0.6 to resolve two critical flaws—tracked as CVE-2026-15718 and CVE-2026-15719—which involve an invalid pointer in WebAssembly and a site isolation bypass in DOM navigation, warning that exploit code for both issues has already been published online. Simultaneously, Google shipped Chrome version 150.0.7871.125, fixing 15 vulnerabilities including two critical use-after-free bugs within its cross-platform Ozone abstraction layer that primarily affected Linux systems. Enterprise software also saw heavy remediation as Adobe issued patches for 88 separate vulnerabilities across its ecosystem, focusing on several critical arbitrary code execution flaws within ColdFusion, Commerce, and Experience Manager. Rounding out the patch cycle, Broadcom resolved a severe authentication bypass bug (CVE-2026-47865) in its VMware Avi Load Balancer that carried a near-perfect CVSS severity score of 9.8, which previously allowed unauthorized network attackers to hijack the control plane. Although security researchers confirm that none of these newly disclosed flaws have been actively exploited in the wild, organizations and everyday users are strongly urged to apply these system updates immediately to stay ahead of potential cyber threats.
Major Tech Patch Tuesday: Chrome, Firefox, Adobe, and VMware Deploy Urgent Security Fixes
