Descrição
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, perform cross-site scripting attack, spoof user interface.
Below is a complete list of vulnerabilities:
- Denial of service vulnerability can be exploited remotely to cause denial of service.
- Validation of untrusted input vulnerability can be exploited to bypass security restrictions.
- A remote code execution vulnerability in the “Copy as cURL” feature can be exploited remotely to execute arbitrary code.
- Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
- Security UI vulnerability can be exploited to spoof user interface.
- Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
- A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
- Use after free vulnerability in media can be exploited to cause denial of service or execute arbitrary code.
Comunicados originais
Exploração
Public exploits exist for this vulnerability.
Produtos relacionados
Lista de CVE
- CVE-2025-5262 critical
- CVE-2025-5263 warning
- CVE-2025-5264 warning
- CVE-2025-5265 warning
- CVE-2025-5266 warning
- CVE-2025-5267 high
- CVE-2025-5268 critical
- CVE-2025-5270 critical
- CVE-2025-5271 high
- CVE-2025-5272 high
- CVE-2025-5283 high
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!