CVE-2026-6746

Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
References
Link Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=2014596 Permissions Required
https://www.mozilla.org/security/advisories/mfsa2026-30/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2026-31/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2026-32/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2026-33/ Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2026-34/ Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:10757
https://access.redhat.com/errata/RHSA-2026:10766
https://access.redhat.com/errata/RHSA-2026:10767
https://access.redhat.com/errata/RHSA-2026:12285
https://access.redhat.com/errata/RHSA-2026:13537
https://access.redhat.com/errata/RHSA-2026:15892
https://access.redhat.com/errata/RHSA-2026:17477
https://access.redhat.com/errata/RHSA-2026:17687
https://access.redhat.com/errata/RHSA-2026:17688
https://access.redhat.com/errata/RHSA-2026:17689
https://access.redhat.com/errata/RHSA-2026:17690
https://access.redhat.com/errata/RHSA-2026:19041
https://access.redhat.com/errata/RHSA-2026:19131
https://access.redhat.com/errata/RHSA-2026:19201
https://access.redhat.com/errata/RHSA-2026:19348
https://access.redhat.com/errata/RHSA-2026:19461
https://access.redhat.com/errata/RHSA-2026:19462
https://access.redhat.com/errata/RHSA-2026:19463
https://access.redhat.com/errata/RHSA-2026:19464
https://access.redhat.com/errata/RHSA-2026:19465
https://access.redhat.com/errata/RHSA-2026:19466
https://access.redhat.com/errata/RHSA-2026:19467
https://access.redhat.com/errata/RHSA-2026:19468
https://access.redhat.com/errata/RHSA-2026:19469
https://access.redhat.com/errata/RHSA-2026:19542
https://access.redhat.com/errata/RHSA-2026:19655
https://access.redhat.com/errata/RHSA-2026:19704
https://access.redhat.com/security/cve/CVE-2026-6746
https://bugzilla.redhat.com/show_bug.cgi?id=2460112
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-6746.json
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*

History

30 Jun 2026, 03:21

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:10757 -
  • () https://access.redhat.com/errata/RHSA-2026:10766 -
  • () https://access.redhat.com/errata/RHSA-2026:10767 -
  • () https://access.redhat.com/errata/RHSA-2026:12285 -
  • () https://access.redhat.com/errata/RHSA-2026:13537 -
  • () https://access.redhat.com/errata/RHSA-2026:15892 -
  • () https://access.redhat.com/errata/RHSA-2026:17477 -
  • () https://access.redhat.com/errata/RHSA-2026:17687 -
  • () https://access.redhat.com/errata/RHSA-2026:17688 -
  • () https://access.redhat.com/errata/RHSA-2026:17689 -
  • () https://access.redhat.com/errata/RHSA-2026:17690 -
  • () https://access.redhat.com/errata/RHSA-2026:19041 -
  • () https://access.redhat.com/errata/RHSA-2026:19131 -
  • () https://access.redhat.com/errata/RHSA-2026:19201 -
  • () https://access.redhat.com/errata/RHSA-2026:19348 -
  • () https://access.redhat.com/errata/RHSA-2026:19461 -
  • () https://access.redhat.com/errata/RHSA-2026:19462 -
  • () https://access.redhat.com/errata/RHSA-2026:19463 -
  • () https://access.redhat.com/errata/RHSA-2026:19464 -
  • () https://access.redhat.com/errata/RHSA-2026:19465 -
  • () https://access.redhat.com/errata/RHSA-2026:19466 -
  • () https://access.redhat.com/errata/RHSA-2026:19467 -
  • () https://access.redhat.com/errata/RHSA-2026:19468 -
  • () https://access.redhat.com/errata/RHSA-2026:19469 -
  • () https://access.redhat.com/errata/RHSA-2026:19542 -
  • () https://access.redhat.com/errata/RHSA-2026:19655 -
  • () https://access.redhat.com/errata/RHSA-2026:19704 -
  • () https://access.redhat.com/security/cve/CVE-2026-6746 -
  • () https://bugzilla.redhat.com/show_bug.cgi?id=2460112 -
  • () https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-6746.json -
CWE CWE-825

22 Apr 2026, 14:38

Type Values Removed Values Added
CPE cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*

22 Apr 2026, 14:24

Type Values Removed Values Added
First Time Mozilla
Mozilla firefox
Mozilla thunderbird
CPE cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
References () https://bugzilla.mozilla.org/show_bug.cgi?id=2014596 - () https://bugzilla.mozilla.org/show_bug.cgi?id=2014596 - Permissions Required
References () https://www.mozilla.org/security/advisories/mfsa2026-30/ - () https://www.mozilla.org/security/advisories/mfsa2026-30/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2026-31/ - () https://www.mozilla.org/security/advisories/mfsa2026-31/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2026-32/ - () https://www.mozilla.org/security/advisories/mfsa2026-32/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2026-33/ - () https://www.mozilla.org/security/advisories/mfsa2026-33/ - Vendor Advisory
References () https://www.mozilla.org/security/advisories/mfsa2026-34/ - () https://www.mozilla.org/security/advisories/mfsa2026-34/ - Vendor Advisory

22 Apr 2026, 00:16

Type Values Removed Values Added
Summary (en) Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10. (en) Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
References
  • () https://www.mozilla.org/security/advisories/mfsa2026-33/ -
  • () https://www.mozilla.org/security/advisories/mfsa2026-34/ -

21 Apr 2026, 18:16

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-416

21 Apr 2026, 13:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-04-21 13:16

Updated : 2026-07-15 01:16


NVD link : CVE-2026-6746

Mitre link : CVE-2026-6746

CVE.ORG link : CVE-2026-6746


JSON object : View

Products Affected

mozilla

  • firefox
  • thunderbird
CWE
CWE-416

Use After Free

CWE-825

Expired Pointer Dereference