Popis
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, perform cross-site scripting attack, spoof user interface.
Below is a complete list of vulnerabilities:
- Denial of service vulnerability can be exploited remotely to cause denial of service.
- Validation of untrusted input vulnerability can be exploited to bypass security restrictions.
- A remote code execution vulnerability in the “Copy as cURL” feature can be exploited remotely to execute arbitrary code.
- Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
- Security UI vulnerability can be exploited to spoof user interface.
- Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
- A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
- Use after free vulnerability in media can be exploited to cause denial of service or execute arbitrary code.
Oficiální doporučení
Vykořisťování
Public exploits exist for this vulnerability.
Související produkty
seznam CVE
- CVE-2025-5262 critical
- CVE-2025-5263 warning
- CVE-2025-5264 warning
- CVE-2025-5265 warning
- CVE-2025-5266 warning
- CVE-2025-5267 high
- CVE-2025-5268 critical
- CVE-2025-5270 critical
- CVE-2025-5271 high
- CVE-2025-5272 high
- CVE-2025-5283 high
Zobrazit více
Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com
Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!