Descrição
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service, perform cross-site scripting attack.
Below is a complete list of vulnerabilities:
- Memory safety vulnerability can be exploited to execute arbitrary code.
- Security vulnerability in can be exploited to bypass security restrictions.
- Security UI vulnerability can be exploited to spoof user interface.
- Information disclosure vulnerability can be exploited to obtain sensitive information.
- Use after free vulnerability in XSLT can be exploited to cause denial of service or execute arbitrary code.
- Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
- Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
- Use after free vulnerability in Custom Highlight can be exploited to cause denial of service or execute arbitrary code.
- A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
Comunicados originais
Exploração
Public exploits exist for this vulnerability.
Produtos relacionados
Lista de CVE
- CVE-2025-1014 critical
- CVE-2025-0510 high
- CVE-2025-1017 critical
- CVE-2025-1013 high
- CVE-2025-1009 critical
- CVE-2025-1012 critical
- CVE-2025-1015 high
- CVE-2025-1016 critical
- CVE-2025-1010 critical
- CVE-2025-1011 critical
- CVE-2025-1020 critical
- CVE-2025-1019 warning
- CVE-2025-1018 high
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!