HIGHCVE-2026-6772Published Modified CNA mozilla
CVE-2026-6772: Incorrect boundary conditions in the Libraries component in NSS
Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 115.35
- Affected Products
- 2
Fix available
115.35140.10150
Affected packages
- Mozilla / FirefoxFixed in 115.35, 140.10, 150
- Mozilla / ThunderbirdFixed in 140.10, 150
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N