Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

ThunderbirdBy crafting a malformed file name for an attachment in a multipart message, an attacker can trick Th…

high
7
First published (updated )
REDHAT-BUG-2359789

ThunderbirdThunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can b…

high
7
First published (updated )
REDHAT-BUG-2359793

FirefoxMozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYS…

high
7
First published (updated )
REDHAT-BUG-2362902

FirefoxA process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…

high
7
First published (updated )
REDHAT-BUG-2362907

Firefox ESRMemory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of m…

high
7
First published (updated )
REDHAT-BUG-2362915

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Debian LinuxBuffer Overflow

high
8.8
EPSS
0.10%
First published (updated )
CVE-2023-6858

redhat/nssBuffer Overflow

high
8.8
First published (updated )
CVE-2023-0767

Thunderbird3 vulnerabilities

high
7
First published (updated )
MFSA2025-32

Path Traversal

high
8.8
First published (updated )
CVE-2025-2817

Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when ch…

high
7
First published (updated )
MFSA-RESERVE-2025-1937097

A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…

high
7
First published (updated )
MFSA-RESERVE-2025-1958350

Thunderbird5 vulnerabilities

high
7
First published (updated )
MFSA2025-31

Path Traversal

high
8.8
First published (updated )
CVE-2025-2817

An attacker with control over a content process could potentially leverage the privileged UITour act…

high
7.1
EPSS
0.03%
First published (updated )
CVE-2025-4085

Modification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when ch…

high
7
First published (updated )
MFSA-RESERVE-2025-1937097

Memory safety bugs present in Firefox 137 and Thunderbird 137. Some of these bugs showed evidence of…

high
7
First published (updated )
MFSA-RESERVE-2025-4

A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…

high
7
First published (updated )
MFSA-RESERVE-2025-1958350

IBM InfoSphere Guardium z/OSWhen importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to t…

high
7.5
First published (updated )
CVE-2019-11719

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-Xchange Open-Xchange App Suite FrontendLast updated 24 July 2024

high
8.8
Exploited
EPSS
0.04%
First published (updated )
CVE-2024-4367

ThunderbirdA crafted URL containing specific Unicode characters could have hidden the true origin of the page, …

high
7.3
EPSS
0.04%
First published (updated )
CVE-2025-3029

ThunderbirdUse After Free

high
8.1
EPSS
0.05%
First published (updated )
CVE-2025-3030

FirefoxMemory safety bugs present in Firefox 136, Thunderbird 136, Firefox ESR 128.8, and Thunderbird 128.8…

high
7
First published (updated )
REDHAT-BUG-2356563

FirefoxUse After Free

high
7
First published (updated )
REDHAT-BUG-2356562

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Red Hat FedoraRegular expression denial of service in Rust's regex crate

high
7.5
First published (updated )
CVE-2022-24713

Matrix Javascript SDKMatrix Javascript SDK vulnerable to impersonation via forwarded Megolm sessions

high
7.5
First published (updated )
CVE-2022-39249

Matrix Javascript SDKMatrix Javascript SDK vulnerable to Olm/Megolm protocol confusion

high
8.6
First published (updated )
CVE-2022-39251

Matrix Javascript SDKMatrix JavaScript SDK vulnerable to key/device identifier confusion in SAS verification

high
8.6
First published (updated )
CVE-2022-39250

ThunderbirdCommand Injection

high
8.8
First published (updated )
CVE-2022-22744

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThunderbirdWhen resizing a popup while requesting fullscreen access, the popup would have become unable to leav…

high
7.5
First published (updated )
CVE-2022-22741

ThunderbirdUse After Free

high
8.8
First published (updated )
CVE-2022-22740

FirefoxAn attacker could have sent a message to the parent process where the contents were used to double-i…

high
8.8
First published (updated )
CVE-2022-1529

FirefoxIf an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollut…

high
8.8
First published (updated )
CVE-2022-1802

redhat/thunderbirdIt may be possible for an attacker to craft an email message that causes Thunderbird to perform an o…

high
8.8
First published (updated )
CVE-2022-0566

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203