Filter
-Infinity
0

Trending

Last week
Last month
Last year

ThunderbirdPath Traversal

high
8.8
First published (updated )
CVE-2025-2817

ThunderbirdBuffer Overflow

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-4093

FirefoxA process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…

critical
9.1
EPSS
0.05%
First published (updated )
CVE-2025-4083

ThunderbirdBuffer Overflow

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-4091

ThunderbirdA vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due t…

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-4087

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

FirefoxMozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYS…

high
7
First published (updated )
REDHAT-BUG-2362902

FirefoxMemory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9…

medium
4
First published (updated )
REDHAT-BUG-2362912

FirefoxA process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…

high
7
First published (updated )
REDHAT-BUG-2362907

Firefox ESRMemory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of m…

high
7
First published (updated )
REDHAT-BUG-2362915

FirefoxA vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due t…

medium
4
First published (updated )
REDHAT-BUG-2362904

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

FirefoxModification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when ch…

medium
5.9
EPSS
0.05%
First published (updated )
CVE-2025-4082

Firefox ESRDue to insufficient escaping of the special characters in the "copy as cURL" feature, an attacker co…

medium
5.7
EPSS
0.03%
First published (updated )
CVE-2025-4084

FirefoxAn attacker with control over a content process could potentially leverage the privileged UITour act…

high
7.1
EPSS
0.03%
First published (updated )
CVE-2025-4085

FirefoxA specially crafted filename containing a large number of encoded newline characters could obscure t…

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-4086

FirefoxCSRF

medium
6.5
EPSS
0.02%
First published (updated )
CVE-2025-4088

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

FirefoxCommand Injection

medium
5.1
EPSS
0.02%
First published (updated )
CVE-2025-4089

FirefoxBuffer Overflow

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-4090

FirefoxBuffer Overflow

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-4092

Debian LinuxBuffer Overflow

high
8.8
EPSS
0.10%
First published (updated )
CVE-2023-6858

ThunderbirdWhen an email contains multiple attachments with external links via the X-Mozilla-External-Attachmen…

medium
6.4
EPSS
0.03%
First published (updated )
CVE-2025-3523

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ThunderbirdThunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can b…

medium
6.3
EPSS
0.03%
First published (updated )
CVE-2025-3522

ThunderbirdPath Traversal

medium
6.3
First published (updated )
CVE-2025-2830

ThunderbirdBy crafting a malformed file name for an attachment in a multipart message, an attacker can trick Th…

high
7
First published (updated )
REDHAT-BUG-2359789

ThunderbirdWhen an email contains multiple attachments with external links via the X-Mozilla-External-Attachmen…

low
1
First published (updated )
REDHAT-BUG-2359786

ThunderbirdThunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can b…

high
7
First published (updated )
REDHAT-BUG-2359793

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/nssBuffer Overflow

high
8.8
First published (updated )
CVE-2023-0767

ThunderbirdUse After Free

critical
9.8
First published (updated )
CVE-2023-5174

ThunderbirdA compromised content process could have provided malicious data to FilterNodeD2D1 resulting in an o…

critical
9.8
First published (updated )
CVE-2023-5168

Debian LinuxLast updated 24 July 2024

critical
9.8
First published (updated )
CVE-2023-5176

FirefoxMemory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9…

medium
4
First published (updated )
MFSA-RESERVE-2025-3

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203