Privilege Escalation in Networking Component of Firefox by Mozilla
CVE-2026-6761

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 21 April 2026

What is CVE-2026-6761?

A vulnerability exists in the Networking component of Firefox, which allows attackers to escalate privileges, potentially compromising user security. This issue has been resolved in Firefox version 150 and Mozilla Firefox ESR version 140.10. Users are advised to update to these versions promptly to mitigate any risks associated with this vulnerability.

Affected Version(s)

Firefox 140.10

Firefox 150

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2017857

https://www.mozilla.org/security/advisories/mfsa2026-30/

https://www.mozilla.org/security/advisories/mfsa2026-32/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 21, 2026

Credit

kiyong

CVE-2026-6761 Data

JSON