Kaspersky Threats — Die Seite, die Sie aufgerufen haben konnte nicht gefunden werden.<br>Sie können sich aber hier über die aktuellsten Schwachstellen sowie über Schadsoftware informieren.

Beschreibung

Multiple vulnerabilities were found in Mozilla Thunderbird Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface.

Below is a complete list of vulnerabilities:

Use-after-free vulnerability in the Audio/Video component can be exploited to cause denial of service or execute arbitrary code.
Mitigation bypass vulnerability in the DOM: Security component can be exploited to bypass security restrictions.
Incorrect boundary conditions vulnerability in the Graphics: WebGPU component can be exploited to cause denial of service.
Sandbox escape due to incorrect boundary conditions vulnerability in the Graphics: WebGPU component can be exploited to cause denial of service.
Race condition vulnerability in the Graphics component can be exploited to cause denial of service.
Memory safety vulnerability in Firefox can be exploited to execute arbitrary code.
Mitigation bypass vulnerability in the DOM: Core & HTML component can be exploited to bypass security restrictions.
Same-origin policy bypass vulnerability in the DOM: Workers component can be exploited to bypass security restrictions.
JIT miscompilation vulnerability in the JavaScript Engine: JIT component can be exploited to cause denial of service.
Spoofing vulnerability in Firefox can be exploited to spoof user interface.
Same-origin policy bypass vulnerability in the DOM: Notifications component can be exploited to bypass security restrictions.
Incorrect boundary conditions vulnerability in the JavaScript: WebAssembly component can be exploited to cause denial of service.
Use-after-free vulnerability in the WebRTC: Audio/Video component can be exploited to cause denial of service or execute arbitrary code.

Ursprüngliche Informationshinweise

MFSA2025-90

Ausnutzung

Public exploits exist for this vulnerability.

Betroffene Produkte

Mozilla-Thunderbird

CVE Liste

CVE-2025-13012
critical
CVE-2025-13013
high
CVE-2025-13014
critical
CVE-2025-13015
warning
CVE-2025-13016
critical
CVE-2025-13017
critical
CVE-2025-13018
critical
CVE-2025-13019
critical
CVE-2025-13020
critical
CVE-2025-13021
critical
CVE-2025-13022
critical
CVE-2025-13023
critical
CVE-2025-13024
critical
CVE-2025-13025
critical
CVE-2025-13026
critical
CVE-2025-13027
critical

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com

Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!