Description
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service.
Below is a complete list of vulnerabilities:
- Memory safety vulnerability can be exploited to execute arbitrary code.
- Security vulnerability in cookie can be exploited to bypass security restrictions.
- Denial of service vulnerability in cache on ARM64 platforms can be exploited to cause denial of service.
- Security vulnerability in base-uri can be exploited to bypass security restrictions.
- Use after free vulnerability in threads can be exploited to execute arbitrary code.
- Security vulnerability in transient pages can be exploited to bypass security restrictions.
- Code execution vulnerability can be exploited to execute arbitrary code.
- Out of bounds read vulnerability in H264 decoding can be exploited to cause denial of service.
Original advisories
Related products
CVE list
- CVE-2022-40962 critical
- CVE-2022-40958 high
- CVE-2022-40957 high
- CVE-2022-40956 high
- CVE-2022-40960 high
- CVE-2022-40959 high
- CVE-2022-3155 critical
- CVE-2022-3266 high
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!