VDB

CVE-2026-6752

CVE-2026-6752 PUBLISHED CVSS 7.300000190734863 HIGH

Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.

EPSS 0.07% · 21.7th percentile

Risk Scores

CVSS 3.1
7.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
EPSS Score
0.07%
21.7th percentile

Affected Products

VendorProductVersions
MozillaThunderbird140.10, 150
MozillaFirefox115.35, 140.10, 150

Timeline

  • Apr 21, 2026 CVE Published
  • Apr 22, 2026 EPSS Score
  • Apr 22, 2026 Security Advisory
  • Apr 27, 2026 Distribution Patch
  • Apr 27, 2026 Security Advisory
  • Apr 27, 2026 Distribution Patch
  • Apr 27, 2026 Security Advisory
  • Apr 27, 2026 Distribution Patch
  • Apr 27, 2026 Security Advisory
  • Apr 28, 2026 Distribution Patch
  • Apr 28, 2026 Distribution Patch
  • Apr 30, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›