Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
5.4 MEDIUM
CVE-2026-6774 — Mitigation bypass in the DOM: Security component

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150.

Remote | Misconfiguration
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6773 — Denial-of-service due to integer overflow in the Graphics: WebGPU component

Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 150.

| Denial of Service
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6772 — Incorrect boundary conditions in the Libraries component in NSS

Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.

| Memory Corruption
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6771 — Mitigation bypass in the DOM: Security component

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

| Cross-Site Scripting
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.5 MEDIUM
CVE-2026-6770 — Other issue in the Storage: IndexedDB component

Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

Remote
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.5 MEDIUM
CVE-2026-6769 — Privilege escalation in the Debugger component

Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
9.8 CRITICAL
CVE-2026-6768 — Mitigation bypass in the Networking: Cookies component

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150.

Remote
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
5.3 MEDIUM
CVE-2026-6767 — Other issue in the Libraries component in NSS

Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.

Remote | Information Disclosure
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.5 HIGH
CVE-2026-6766 — Incorrect boundary conditions in the Libraries component in NSS

Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

Remote | Memory Corruption
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6765 — Information disclosure in the Form Autofill component

Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

| Information Disclosure
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6764 — Incorrect boundary conditions in the DOM: Device Interfaces component

Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

| Memory Corruption
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6763 — Mitigation bypass in the File Handling component

Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

| Misconfiguration
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6762 — Spoofing issue in the DOM: Core & HTML component

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10.

| Misconfiguration
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.5 MEDIUM
CVE-2026-6761 — Privilege escalation in the Networking component

Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6760 — Mitigation bypass in the Networking: Cookies component

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150.

| Misconfiguration
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.5 HIGH
CVE-2026-6759 — Use-after-free in the Widget: Cocoa component

Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

Remote | Memory Corruption
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.5 HIGH
CVE-2026-6758 — Use-after-free in the JavaScript: WebAssembly component

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.

Remote | Memory Corruption
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6757 — Invalid pointer in the JavaScript: WebAssembly component

Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10.

| Memory Corruption
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
0.0 NA
CVE-2026-6756 — Mitigation bypass in Firefox for Android

Mitigation bypass in Firefox for Android. This vulnerability was fixed in Firefox 150.

Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.5 MEDIUM
CVE-2026-6755 — Mitigation bypass in the DOM: postMessage component

Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150.

Remote | Information Disclosure
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
Showing 20 of 6145 Results