Thunderbird

thunderbird

Vendor: Mozilla • 1,729 CVEs

CVEs (1,729)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-6785 1Mozilla 2Firefox Thunderbird May 27, 2026 Apr 26, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort...Show more Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.Show less
CVE-2026-6784 1Mozilla 2Firefox Thunderbird May 7, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code....Show more Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150 and Thunderbird 150.Show less
CVE-2026-6783 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6782 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6781 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6780 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6779 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6778 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6777 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Other issue in the Networking: DNS component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6776 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVE-2026-6775 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6774 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6773 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6772 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVE-2026-6771 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVE-2026-6770 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVE-2026-6769 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVE-2026-6768 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.
CVE-2026-6767 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
CVE-2026-6766 1Mozilla 2Firefox Thunderbird Apr 22, 2026 Apr 21, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Previous 1 234 5...87 Next