Description
Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Published: 2026-04-28
Score: 7.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The updated description indicates that the vulnerability involves memory safety bugs that caused memory corruption in Firefox ESR 140.10.0, Firefox 150.0.0, Thunderbird ESR 140.10.0, and Thunderbird 150.0.0. The description notes that these bugs show evidence of memory corruption and, with sufficient effort, could be exploited to run arbitrary code. The fixes in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1 remove the vulnerable code paths.

Affected Systems

Affected versions include Firefox ESR 140.10.0, Firefox 150.0.0, Thunderbird ESR 140.10.0, and Thunderbird 150.0.0. The fix reached Firefox ESR 140.10.1, Firefox 150.0.1, Thunderbird ESR 140.10.1, and Thunderbird 150.0.1.

Risk and Exploitability

Memory corruption can lead to remote code execution. The CVSS score is 7.3 and the EPSS score is less than 1%, with the vulnerability not listed in KEV. The likely attack vector is inferred to be via malicious content—such as web pages or email attachments—that the vulnerable software processes, given that memory safety bugs often become exploitable through user interaction with such content. While no public exploit is documented, the potential severity remains high if an attacker can trigger the corrupting code paths.

Generated by OpenCVE AI on May 7, 2026 at 17:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Firefox to ESR 140.10.1 or the latest 150.0.1 release
  • Upgrade Thunderbird to ESR 140.10.1 or the latest 150.0.1 release
  • Enable security defaults and appropriate content blocking settings to reduce malicious content reaching vulnerable code paths
  • Disable or limit third‑party extensions that may trigger vulnerable code paths

Generated by OpenCVE AI on May 7, 2026 at 17:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4555-1 firefox-esr security update
Debian DLA Debian DLA DLA-4562-1 thunderbird security update
Debian DSA Debian DSA DSA-6236-1 firefox-esr security update
Debian DSA Debian DSA DSA-6242-1 thunderbird security update
History

Tue, 12 May 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Important

Thu, 07 May 2026 16:15:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox ESR 140.10.0 and Firefox 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1. Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Title Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1

Thu, 07 May 2026 15:30:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1. Memory safety bugs present in Firefox ESR 140.10.0 and Firefox 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Title Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1 Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1

Thu, 30 Apr 2026 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla thunderbird
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:-:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*
Vendors & Products Mozilla thunderbird

Thu, 30 Apr 2026 18:00:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox ESR 140.10.0 and Firefox 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1 and Firefox ESR 140.10.1. Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Thunderbird 150.0.1, and Thunderbird 140.10.1.
Title Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1
References

Thu, 30 Apr 2026 11:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

 ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 28 Apr 2026 22:15:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1 and Firefox ESR 140.10.1. Memory safety bugs present in Firefox ESR 140.10.0 and Firefox 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1 and Firefox ESR 140.10.1.
Title Memory safety bugs fixed in Firefox ESR 140.10.1, Thunderbird ESR 140.10.1, Firefox 150.0.1 and Thunderbird 150.0.1 Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1

Tue, 28 Apr 2026 17:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119
CWE-787
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 28 Apr 2026 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla
Mozilla firefox
Vendors & Products Mozilla
Mozilla firefox

Tue, 28 Apr 2026 14:30:00 +0000

Type Values Removed Values Added
Description Memory safety bugs present in Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1 and Firefox ESR 140.10.1.
Title Memory safety bugs fixed in Firefox ESR 140.10.1, Thunderbird ESR 140.10.1, Firefox 150.0.1 and Thunderbird 150.0.1
References

Subscriptions

Mozilla Firefox Thunderbird
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-05-07T15:22:40.336Z

Reserved: 2026-04-28T13:42:18.353Z

Link: CVE-2026-7323

cve-icon Vulnrichment

Updated: 2026-04-28T16:41:47.712Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-28T15:16:37.837

Modified: 2026-04-30T18:38:23.180

Link: CVE-2026-7323

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-28T13:49:10Z

Links: CVE-2026-7323 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T17:45:34Z

Weaknesses