Mozilla has released Firefox 150 to patch 41 security vulnerabilities, including multiple high-severity flaws that could lead to remote code execution.
Users should immediately update their browsers to protect against these critical memory corruption and use-after-free bugs.
Critical Vulnerability Details
The most dangerous flaws include use-after-free vulnerabilities in the DOM (CVE-2026-6746) and WebRTC (CVE-2026-6747) components.
These occur when the application incorrectly uses a freed memory pointer, potentially allowing attackers to execute arbitrary malicious code or crash the system.
Security researchers notably utilized Anthropic’s Claude AI to help discover several of these complex memory safety bugs.
This update resolves a wide spectrum of issues ranging from high-severity memory corruption bugs to low-impact denial-of-service vulnerabilities.
The comprehensive breakdown of all Common Vulnerabilities and Exposures (CVEs) addressed in Firefox 150 is detailed below.
| CVE ID | Vulnerability Description | Impact |
|---|---|---|
| CVE-2026-6746 | Use-after-free in the DOM: Core & HTML component | High |
| CVE-2026-6747 | Use-after-free in the WebRTC component | High |
| CVE-2026-6748 | Uninitialized memory in the Audio/Video: Web Codecs component | High |
| CVE-2026-6749 | Information disclosure due to uninitialized memory in Graphics: Canvas2D | High |
| CVE-2026-6750 | Privilege escalation in the Graphics: WebRender component | High |
| CVE-2026-6751 | Uninitialized memory in the Audio/Video: Web Codecs component | High |
| CVE-2026-6752 | Incorrect boundary conditions in the WebRTC component | High |
| CVE-2026-6753 | Incorrect boundary conditions in the WebRTC component | High |
| CVE-2026-6754 | Use-after-free in the JavaScript Engine component | High |
| CVE-2026-6755 | Mitigation bypass in the DOM: postMessage component | Moderate |
| CVE-2026-6756 | Mitigation bypass in Firefox for Android | Moderate |
| CVE-2026-6757 | Invalid pointer in the JavaScript: WebAssembly component | Moderate |
| CVE-2026-6758 | Use-after-free in the JavaScript: WebAssembly component | Moderate |
| CVE-2026-6759 | Use-after-free in the Widget: Cocoa component | Moderate |
| CVE-2026-6760 | Mitigation bypass in the Networking: Cookies component | Moderate |
| CVE-2026-6761 | Privilege escalation in the Networking component | Moderate |
| CVE-2026-6762 | Spoofing issue in the DOM: Core & HTML component | Moderate |
| CVE-2026-6763 | Mitigation bypass in the File Handling component | Moderate |
| CVE-2026-6764 | Incorrect boundary conditions in the DOM: Device Interfaces component | Moderate |
| CVE-2026-6765 | Information disclosure in the Form Autofill component | Moderate |
| CVE-2026-6766 | Incorrect boundary conditions in the Libraries component in NSS | Moderate |
| CVE-2026-6767 | Other issue in the Libraries component in NSS | Moderate |
| CVE-2026-6768 | Mitigation bypass in the Networking: Cookies component | Moderate |
| CVE-2026-6769 | Privilege escalation in the Debugger component | Moderate |
| CVE-2026-6770 | Other issue in the Storage: IndexedDB component | Moderate |
| CVE-2026-6771 | Mitigation bypass in the DOM: Security component | Moderate |
| CVE-2026-6772 | Incorrect boundary conditions in the Libraries component in NSS | Moderate |
| CVE-2026-6773 | Denial-of-service due to integer overflow in Graphics: WebGPU | Low |
| CVE-2026-6774 | Mitigation bypass in the DOM: Security component | Low |
| CVE-2026-6775 | Incorrect boundary conditions in the WebRTC component | Low |
| CVE-2026-6776 | Incorrect boundary conditions in the WebRTC: Networking component | Low |
| CVE-2026-6777 | Other issue in the Networking: DNS component | Low |
| CVE-2026-6778 | Invalid pointer in the Audio/Video: Playback component | Low |
| CVE-2026-6779 | Other issue in the JavaScript Engine component | Low |
| CVE-2026-6780 | Denial-of-service in the Audio/Video: Playback component | Low |
| CVE-2026-6781 | Denial-of-service in the Audio/Video: Playback component | Low |
| CVE-2026-6782 | Information disclosure in the IP Protection component | Low |
| CVE-2026-6783 | Incorrect boundary conditions/integer overflow in Audio/Video: Playback | Low |
| CVE-2026-6784 | Memory safety bugs fixed in Firefox 150 and Thunderbird 150 | High |
| CVE-2026-6785 | Memory safety bugs fixed in ESR 115.35, ESR 140.10, and Firefox 150 | High |
| CVE-2026-6786 | Memory safety bugs fixed in ESR 140.10 and Firefox 150 | High |
Follow us on Google News, LinkedIn, and X to Get Instant Updates and Set GBH as a Preferred Source in Google.
