Memory Safety Bugs in Firefox and Thunderbird by Mozilla
CVE-2026-7324

7.3HIGH

Key Information:

Vendor: Mozilla
Status: Firefox
Vendor: CVE Published:; 28 April 2026

What is CVE-2026-7324?

Memory safety bugs identified in Firefox version 150.0.0 and Thunderbird version 150.0.0 have been detected, exhibiting signs of potential memory corruption. These weaknesses raise the concern that, with sufficient effort, they could be exploited to execute arbitrary code, jeopardizing user security. Mozilla has addressed this issue in version 150.0.1 by implementing necessary security fixes.

Affected Version(s)

Firefox 150.0.1

References

https://bugzilla.mozilla.org/buglist.cgi?bug_id=2029419%2...

https://www.mozilla.org/security/advisories/mfsa2026-35/

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2026
Vulnerability Reserved
Apr 28, 2026

Credit

The Mozilla Fuzzing Team

CVE-2026-7324 Data

JSON