← back
CVE-2026-6752

Incorrect boundary conditions in the WebRTC component

CVSS 7.3 HIGHEPSS 0.3%CWE-119CWE-131
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.3EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
21 Apr 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L