Vulnerability in Mozilla Firefox

CVE-2026-6755

Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

EPSS: 0.000 (6.7th percentile) — read the EPSS interpretation.