What is the CVSS score of CVE-2026-7323?

CVE-2026-7323 has a CVSS 3.1 base score of 7.3 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. EPSS exploitation probability: 0.0%.

Is there a patch available for CVE-2026-7323?

Yes, a patch is available for CVE-2026-7323. Update the affected software to the latest version immediately.

Red Hat CVE-2026-7323

EUVD-2026-26060 HIGH

Out-of-bounds Write (CWE-787)

2026-04-28 mozilla

RCE Buffer Overflow Memory Corruption Red Hat Mozilla Suse

7.3

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

Lifecycle Timeline

CVSS changed

Apr 28, 2026 - 19:52 NVD

7.3 (None) 7.3 (HIGH)

EUVD ID Assigned

Apr 28, 2026 - 14:30 euvd

EUVD-2026-26060

CVE Published

Apr 28, 2026 - 13:49 nvd

HIGH 7.3

DescriptionNVD

Memory safety bugs present in Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1 and Firefox ESR 140.10.1.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory