Description
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, perform cross-site scripting attack, spoof user interface.
Below is a complete list of vulnerabilities:
- Denial of service vulnerability can be exploited remotely to cause denial of service.
- Validation of untrusted input vulnerability can be exploited to bypass security restrictions.
- A remote code execution vulnerability in the “Copy as cURL” feature can be exploited remotely to execute arbitrary code.
- Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
- Security UI vulnerability can be exploited to spoof user interface.
- Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
- A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
- Use after free vulnerability in media can be exploited to cause denial of service or execute arbitrary code.
Fiches de renseignement originales
Exploitation
Public exploits exist for this vulnerability.
Produits associés
Liste CVE
- CVE-2025-5262 critical
- CVE-2025-5263 warning
- CVE-2025-5264 warning
- CVE-2025-5265 warning
- CVE-2025-5266 warning
- CVE-2025-5267 high
- CVE-2025-5268 critical
- CVE-2025-5270 critical
- CVE-2025-5271 high
- CVE-2025-5272 high
- CVE-2025-5283 high
En savoir plus
Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com
Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !