Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks

Published: 3 days ago (March 6, 2026 at 02:00 PM EST)

1 min read

Source: TechCrunch

Overview

In a recent security partnership with Mozilla, Anthropic discovered 22 separate vulnerabilities in Firefox, with 14 classified as “high‑severity.” Most of the bugs have been fixed in Firefox 148 (released in February), while a few fixes are slated for the next release.

Methodology

Anthropic’s team employed Claude Opus 4.6 over a two‑week period, beginning with the JavaScript engine and then expanding to other parts of the codebase. The team chose Firefox because “it’s both a complex codebase and one of the most well‑tested and secure open‑source projects in the world.”

Findings

Claude Opus proved far more effective at identifying vulnerabilities than at writing exploit code.
The team spent $4,000 in API credits attempting to create proof‑of‑concept exploits, succeeding in only two cases.

Implications

The results highlight the power of AI tools for open‑source projects, even as they can generate a “flood of bad merge requests” alongside valuable contributions.

Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks

Overview

Methodology

Findings

Implications

Related posts

OpenAI and Google employees rush to Anthropic’s defense in DOD lawsuit

Periwinkle is making self-hosted social media on Bluesky’s AT Protocol even easier

OpenAI acquires Promptfoo to secure its AI agents

GM figured out how to navigate EV uncertainty with the Chevy Bolt