Privilege Escalation in Firefox WebRender Component by Mozilla
CVE-2026-6750

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 21 April 2026

What is CVE-2026-6750?

This vulnerability involves a privilege escalation issue in the WebRender component of Mozilla Firefox, allowing unauthorized access to elevated permissions. It impacts users of specific versions of Firefox, including Firefox 150 and both versions of Firefox ESR (115.35 and 140.10). If unaddressed, this vulnerability could potentially allow an attacker to execute malicious actions with higher privileges than intended.

Affected Version(s)

Firefox 115.35

Firefox 140.10

Firefox 150

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2023407

https://www.mozilla.org/security/advisories/mfsa2026-30/

https://www.mozilla.org/security/advisories/mfsa2026-31/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 21, 2026

Credit

choeseyeong

CVE-2026-6750 Data

JSON