Mitigation Bypass in Firefox and Firefox ESR Security Component
CVE-2026-6771

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 21 April 2026

What is CVE-2026-6771?

A mitigation bypass vulnerability exists within the DOM security component of Mozilla Firefox. This issue allows attackers to circumvent established security measures, potentially exposing users to risks. It was addressed in Firefox 150 and the Extended Support Release (ESR) version 140.10, highlighting the importance of keeping your browser updated to safeguard against exploits.

Affected Version(s)

Firefox 140.10

Firefox 150

References

https://bugzilla.mozilla.org/show_bug.cgi?id=2025067

https://www.mozilla.org/security/advisories/mfsa2026-30/

https://www.mozilla.org/security/advisories/mfsa2026-32/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 21, 2026

Credit

Rayhan Hanaputra

CVE-2026-6771 Data

JSON