I don’t recall the CVE, it was likely months ago, and I wasn’t in a position to argue.

The Cyber guy said that a few years ago (3?).

https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures

not being a jerk, just in a hurry

Ironically, in the past year, one of my employers specifically disallowed Firefox due to a CVE, saying that we were to use Chrome. A Cybersecurity professional once told me that Firefox is frowned upon because of CVEs.