CVE-2026-6778

· NIST NVD ↗

Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

MEDIUM
CVSS severity
5.3
CVSS base score
2026-04-21
Published

CWE codes

CWE-476CWE-824

Affected products

mozilla:firefoxmozilla:thunderbird

Sources