Descripción
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, perform cross-site scripting attack, spoof user interface.
Below is a complete list of vulnerabilities:
- Denial of service vulnerability can be exploited remotely to cause denial of service.
- Validation of untrusted input vulnerability can be exploited to bypass security restrictions.
- A remote code execution vulnerability in the “Copy as cURL” feature can be exploited remotely to execute arbitrary code.
- Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
- Security UI vulnerability can be exploited to spoof user interface.
- Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
- A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
- Use after free vulnerability in media can be exploited to cause denial of service or execute arbitrary code.
Notas informativas originales
Explotación
Public exploits exist for this vulnerability.
Productos relacionados
Lista CVE
- CVE-2025-5262 critical
- CVE-2025-5263 warning
- CVE-2025-5264 warning
- CVE-2025-5265 warning
- CVE-2025-5266 warning
- CVE-2025-5267 high
- CVE-2025-5268 critical
- CVE-2025-5270 critical
- CVE-2025-5271 high
- CVE-2025-5272 high
- CVE-2025-5283 high
Leer más
Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com
¿Has encontrado algún error en la descripción de esta vulnerabilidad? ¡Háznoslo saber!