Mozilla Firefox CVE-2026-6775

EUVD-2026-24116 MEDIUM

Buffer Overflow (CWE-119)

2026-04-21 mozilla

GHSA-wpg5-vr6r-jrcr

Buffer Overflow Mozilla

5.3

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

Apr 21, 2026 - 19:22 vuln.today

CVSS changed

Apr 21, 2026 - 19:22 NVD

5.3 (None) 5.3 (MEDIUM)

DescriptionNVD

Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150.

AnalysisAI

Incorrect boundary conditions in Firefox's WebRTC component allow remote attackers to read limited memory contents without authentication. Firefox versions prior to 150 are affected by this low-confidentiality vulnerability, which CVSS rates at 5.3 due to network exploitability without user interaction, though CISA's SSVC framework indicates no current exploitation activity and limited technical impact.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-6775 vulnerability details – vuln.today

Back

Mozilla Firefox CVE-2026-6775

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Full analysis requires sign-in

Share

External POC / Exploit Code