Kaspersky ID:
KLA85425
Дата обнаружения:
02/07/2025
Обновлено:
07/07/2025

Описание

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service, perform cross-site scripting attack, spoof user interface.

Below is a complete list of vulnerabilities:

  1. Security vulnerability can be exploited to bypass security restrictions.
  2. Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
  3. Validation of untrusted input vulnerability can be exploited to bypass security restrictions.
  4. Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
  5. Security UI vulnerability can be exploited to spoof user interface.
  6. Memory safety vulnerability can be exploited to execute arbitrary code.

Первичный источник обнаружения

Связанные продукты

Список CVE

  • CVE-2025-6424
    critical
  • CVE-2025-6425
    warning
  • CVE-2025-6427
    critical
  • CVE-2025-6429
    high
  • CVE-2025-6430
    high
  • CVE-2025-6432
    critical
  • CVE-2025-6433
    critical
  • CVE-2025-6434
    warning
  • CVE-2025-6436
    critical
  • CVE-2025-6435
    critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.