NVD Vulnerability Detail
Search Exploit, PoC
CVE-2026-2757
Summary

Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

Summary

Condiciones de contorno incorrectas en el componente WebRTC: Audio/Video. Esta vulnerabilidad afecta a Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, y Thunderbird < 140.8.

Publication Date Feb. 24, 2026, 11:16 p.m.
Registration Date April 15, 2026, 11:20 a.m.
Last Update April 14, 2026, 12:17 a.m.
CVSS3.1 : CRITICAL
スコア 9.8
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
攻撃元区分(AV) ネットワーク
攻撃条件の複雑さ(AC)
攻撃に必要な特権レベル(PR) 不要
利用者の関与(UI) 不要
影響の想定範囲(S) 変更なし
機密性への影響(C)
完全性への影響(I)
可用性への影響(A)
Affected software configurations
Configuration1 or higher or less more than less than
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:* 115.33.0
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:* 148.0
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:* 128.0 140.8.0
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:* 140.8.0
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:* 148.0
Related information, measures and tools
Common Vulnerabilities List