Latest low severity vulnerabilities for "thunderbird"

FirefoxCertificate length was not properly checked when added to a certificate store. In practice only trus…

low

1

First published 2mo ago (updated 4w ago)

REDHAT-BUG-2343764

FirefoxRace Condition

low

1

First published 2mo ago (updated 4w ago)

REDHAT-BUG-2343754

ThunderbirdThe Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attack…

low

1

First published 2mo ago (updated 2mo ago)

REDHAT-BUG-2343759

ThunderbirdWhen handling keypress events, an attacker may have been able to trick a user into bypassing the "Op…

low

1

First published 4mo ago (updated 4mo ago)

REDHAT-BUG-2328950

FirefoxBy sending a specially crafted push message, a remote server could have hung the parent process, cau…

low

1

First published 5mo ago (updated 5mo ago)

REDHAT-BUG-2322438

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

FirefoxA clipboard "paste" button could persist across tabs which allowed a spoofing attack. This vulnerabi…

low

1

First published 5mo ago (updated 5mo ago)

REDHAT-BUG-2322434

FirefoxRepeated writes to history interface attributes could have been used to cause a Denial of Service co…

low

1

First published 5mo ago (updated 5mo ago)

REDHAT-BUG-2322424

FirefoxA potential memory corruption vulnerability could be triggered if an attacker had the ability to tri…

low

1

First published 6mo ago (updated 6mo ago)

REDHAT-BUG-2315953

FirefoxBy checking the result of calls to `window.open` with specifically set protocol handlers, an attacke…

low

1

First published 6mo ago (updated 6mo ago)

REDHAT-BUG-2315952

FirefoxA website configured to initiate a specially crafted WebTransport session could crash the Firefox pr…

low

1

First published 6mo ago (updated 6mo ago)

REDHAT-BUG-2315945

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

FirefoxLast updated 24 July 2024

low

3.7

EPSS

0.04%

First published 1y ago (updated 3d ago)

CVE-2024-3302

ThunderbirdLast updated 28 February 2025

low

2.7

EPSS

0.04%

First published 1y ago (updated 1mo ago)

CVE-2024-2616

ubuntu/thunderbirdThe error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses…

low

3.1

First published 2y ago (updated 1y ago)

CVE-2023-34414

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 102.8

low

1

First published 2y ago (updated 2y ago)

MFSA2023-07

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 91.1

low

1

First published 4y ago (updated 4y ago)

MFSA2021-41

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 78.10.2

low

1

First published 4y ago (updated 4y ago)

MFSA2021-22

ThunderbirdRace Condition

low

2.5

First published 4y ago (updated 8mo ago)

CVE-2021-29948

FirefoxMozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, and Thunderbird before 31.3 on Apple OS X…

low

2.1

First published 10y ago (updated 6mo ago)

CVE-2014-1595

Mozilla SeaMonkeyInfoleak

low

2.9

First published 13y ago (updated 6mo ago)

CVE-2012-1945

Mozilla SeaMonkeyMozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 do not prop…

low

2.6

First published 13y ago (updated 8mo ago)

CVE-2012-0475

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

FirefoxInfoleak

low

2.6

First published 13y ago (updated 8mo ago)

CVE-2011-3649

ThunderbirdMozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do…

low

3.5

First published 14y ago (updated 8mo ago)

CVE-2011-2372

Mozilla SeaMonkeyThe loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.…

low

2.6

First published 16y ago (updated 7y ago)

CVE-2008-5503

FirefoxMultiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.10 and 2.x…

low

3.7

First published 18y ago (updated 8mo ago)

CVE-2007-0775

Mozilla SeaMonkeyMozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with "Load Images" enabled, allows re…

low

2.6

First published 19y ago (updated 8mo ago)

CVE-2006-4570

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

FirefoxMozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self…

low

2.6

First published 19y ago (updated 8mo ago)

CVE-2006-4567

ThunderbirdMozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote…

low

2.6

First published 19y ago (updated 8mo ago)

CVE-2006-3812

FirefoxHTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used w…

low

2.6

First published 19y ago (updated 8mo ago)

CVE-2006-2786

FirefoxMozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey be…

low

2.6

First published 19y ago (updated 8mo ago)

CVE-2006-1736

FirefoxMozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey be…

low

2.6

First published 19y ago (updated 8mo ago)

CVE-2006-1740

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Trending

Versions

FirefoxCertificate length was not properly checked when added to a certificate store. In practice only trus…

FirefoxRace Condition

ThunderbirdThe Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attack…

ThunderbirdWhen handling keypress events, an attacker may have been able to trick a user into bypassing the "Op…

FirefoxBy sending a specially crafted push message, a remote server could have hung the parent process, cau…

Never miss a vulnerability like this again

FirefoxA clipboard "paste" button could persist across tabs which allowed a spoofing attack. This vulnerabi…

FirefoxRepeated writes to history interface attributes could have been used to cause a Denial of Service co…

FirefoxA potential memory corruption vulnerability could be triggered if an attacker had the ability to tri…

FirefoxBy checking the result of calls to `window.open` with specifically set protocol handlers, an attacke…

FirefoxA website configured to initiate a specially crafted WebTransport session could crash the Firefox pr…

Never miss a vulnerability like this again

FirefoxLast updated 24 July 2024

ThunderbirdLast updated 28 February 2025

ubuntu/thunderbirdThe error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses…

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 102.8

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 91.1

Never miss a vulnerability like this again

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 78.10.2

ThunderbirdRace Condition

FirefoxMozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, and Thunderbird before 31.3 on Apple OS X…

Mozilla SeaMonkeyInfoleak

Mozilla SeaMonkeyMozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 do not prop…

Never miss a vulnerability like this again

FirefoxInfoleak

ThunderbirdMozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do…

Mozilla SeaMonkeyThe loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.…

FirefoxMultiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.10 and 2.x…

Mozilla SeaMonkeyMozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with "Load Images" enabled, allows re…

Never miss a vulnerability like this again

FirefoxMozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self…

ThunderbirdMozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote…

FirefoxHTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used w…

FirefoxMozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey be…

FirefoxMozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey be…

Never miss a vulnerability like this again

Company

Resources

Contact