PT-2026-33958 · Mozilla+1 · Firefox+3

Sseehra

Published

2026-04-21

Updated

2026-05-19

CVE-2026-6772

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Firefox ESR versions prior to 115.35 Firefox ESR versions prior to 140.10 Thunderbird versions prior to 150 Thunderbird versions prior to 140.10

Description Incorrect boundary conditions exist in the Libraries component in NSS.

Recommendations Update to version 150 Update to version 115.35 Update to version 140.10 Update to version 150 Update to version 140.10

Fix

DoS

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-754

Related Identifiers

ALSA-2026:10757

ALSA-2026:10766

ALSA-2026:10767

ALSA-2026:12285

ALSA-2026:13537

ALSA-2026:15892

ALSA-2026:19348

BDU:2026-06955

CVE-2026-6772

ECHO-DEF8-9C28-693F

OESA-2026-2105

OESA-2026-2106

OESA-2026-2107

OESA-2026-2108

OESA-2026-2109

OPENSUSE-SU-2026:10610-1

OPENSUSE-SU-2026:10626-1

RHSA-2026:10757

RHSA-2026:10766

RHSA-2026:10767

RHSA-2026:19348

Affected Products

Firefox

Nss

Rocky Linux

Thunderbird

PT-2026-33958 · Mozilla+1 · Firefox+3

CVE-2026-6772

Weakness Enumeration

Related Identifiers

Affected Products

References · 196