CVE-2026-7320

· NIST NVD ↗

Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Firefox ESR 115.35.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.

HIGH
CVSS severity
7.5
CVSS base score
2026-04-28
Published

CWE codes

CWE-119

Affected products

mozilla:firefoxmozilla:thunderbird

Sources