Description
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service.
Below is a complete list of vulnerabilities:
- Memory corruption vulnerability in the GMP process can be exploited to execute arbitrary code
- Same-origin policy bypass vulnerability in the Graphics can be exploited to bypass security restrictions
- Uninitialized memory vulnerability in the JavaScript Engine component can be exploited to execute arbitrary code
- Out of memory vulnerability in the Graphics: WebRender component can be exploited to cause denial of service
- Memory corruption vulnerability can be exploited to execute arbitrary code
Original advisories
Related products
CVE list
- CVE-2025-9179 critical
- CVE-2025-9180 critical
- CVE-2025-9181 high
- CVE-2025-9182 critical
- CVE-2025-9184 unknown
- CVE-2025-9185 unknown
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!