Use-After-Free Vulnerability in Firefox's WebAssembly Component
CVE-2026-6758

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 21 April 2026

What is CVE-2026-6758?

A use-after-free vulnerability exists in the JavaScript WebAssembly component of Firefox, which can lead to potential exploitation. This flaw was addressed and mitigated in version 150 of Firefox, underlining the importance of keeping web browsers updated for security.

Affected Version(s)

Firefox 150

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2013619

https://www.mozilla.org/security/advisories/mfsa2026-30/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 21, 2026

Credit

Evyatar Ben Asher, Keane Lucas, Nicholas Carlini, Newton Cheng, Daniel Freeman, Alex Gaynor, and Joel Weinberger using Claude from Anthropic

CVE-2026-6758 Data

JSON

Mozilla

What is CVE-2026-6758?

Affected Version(s)

References

Timeline

Credit