VDB

CVE-2026-6763

CVE-2026-6763 PUBLISHED CVSS 6.5 MEDIUM

Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

EPSS 0.06% · 19.2th percentile

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS Score
0.06%
19.2th percentile

Affected Products

VendorProductVersions
MozillaThunderbird150, 140.10
MozillaFirefox150, 140.10

Timeline

  • Apr 21, 2026 CVE Published
  • Apr 22, 2026 EPSS Score
  • Apr 22, 2026 Security Advisory
  • Apr 27, 2026 Distribution Patch
  • Apr 27, 2026 Security Advisory
  • Apr 27, 2026 Distribution Patch
  • Apr 27, 2026 Security Advisory
  • Apr 27, 2026 Distribution Patch
  • Apr 27, 2026 Security Advisory
  • Apr 28, 2026 Distribution Patch
  • Apr 28, 2026 Distribution Patch
  • Apr 30, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›