Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/13 12:0 a.m.7 views

MiracleLinux 8 : thunderbird-128.11.0-1.el8_10.ML.1 (AXSA:2025-10026:12)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-10026:12 advisory. thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header...

9.8CVSS7.8AI score0.00994EPSS
Exploits1References12
Tenable Nessus
Tenable Nessusadded 2025/06/27 12:0 a.m.2 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaThunderbird (SUSE-SU-2025:01946-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01946-1 advisory. Update to Mozilla Thunderbird 128.11 MFSA 2025-46, bsc1243353: - CVE-2025-5262: Double-free in...

8.1CVSS7AI score0.00436EPSS
Exploits0References18
Mageia
Mageiaadded 2025/06/25 3:14 p.m.3 views

Updated nss & firefox packages fix security vulnerabilities

CVE-2025-5263: Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. CVE-2025-5264: Due to insufficient escaping of the newline character in the “Copy as cURL” feature, an attacker could trick a user into using this...

8.1CVSS7.2AI score0.00436EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/06/25 12:0 a.m.5 views

Oracle Linux 7 : firefox (ELSA-2025-9074)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-9074 advisory. 128.11.0-1.0.1 - Update to 128.11.0 Orabug: 38077559CVE-2025-5263CVE-2025-5264 CVE-2025-5266CVE-2025-5267CVE-2025-5268CVE-2025-5269 Tenable has extract...

8.1CVSS6.4AI score0.00436EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2025/06/16 12:0 a.m.2 views

RHEL 7 : firefox (RHSA-2025:9074)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:9074 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.1CVSS7.1AI score0.00436EPSS
Exploits0References15
OpenVAS
OpenVASadded 2025/06/16 12:0 a.m.2 views

openSUSE Security Advisory (SUSE-SU-2025:01946-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.3AI score0.00436EPSS
Exploits0References4
OSV
OSVadded 2025/06/13 10:17 a.m.1 views

SUSE-SU-2025:01946-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.11 MFSA 2025-46, bsc1243353: - CVE-2025-5262: Double-free in libvpx encoder bmo1962421 - CVE-2025-5263: Error handling for script execution was incorrectly isolated from web content bmo1960745 -...

8.1CVSS6.4AI score0.00436EPSS
Exploits0References10
Tenable Nessus
Tenable Nessusadded 2025/06/11 12:0 a.m.7 views

AlmaLinux 8 : thunderbird (ALSA-2025:8756)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:8756 advisory. thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header in...

9.8CVSS7.8AI score0.00994EPSS
Exploits1References13
Tenable Nessus
Tenable Nessusadded 2025/06/10 12:0 a.m.4 views

RHEL 8 : thunderbird (RHSA-2025:8756)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:8756 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: JavaScript Execution via Spoofed PDF Attachment...

9.8CVSS7.7AI score0.00994EPSS
Exploits1References26
Tenable Nessus
Tenable Nessusadded 2025/06/05 12:0 a.m.7 views

RHEL 10 : firefox (RHSA-2025:8341)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:8341 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.1CVSS7.1AI score0.00436EPSS
Exploits0References15
Tenable Nessus
Tenable Nessusadded 2025/06/05 12:0 a.m.9 views

RHEL 9 : thunderbird (RHSA-2025:8598)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:8598 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving...

9.8CVSS7.7AI score0.00994EPSS
Exploits1References19
Tenable Nessus
Tenable Nessusadded 2025/06/05 12:0 a.m.12 views

RHEL 9 : thunderbird (RHSA-2025:8607)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:8607 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving...

9.8CVSS7.7AI score0.00994EPSS
Exploits1References19
OPENSUSE Linux
OPENSUSE Linuxadded 2025/06/04 12:0 a.m.4 views

MozillaFirefox-139.0.1-1.1 on GA media (moderate)

MozillaFirefox-139.0.1-1.1 on GA media Announcement ID: openSUSE-SU-2025:15196-1 Rating: moderate Cross-References: CVE-2025-5263 CVE-2025-5264 CVE-2025-5265 CVE-2025-5266 CVE-2025-5267 CVE-2025-5268 CVE-2025-5270 CVE-2025-5271 CVE-2025-5272 CVSS scores: CVE-2025-5263 SUSE : 4.3...

7.5CVSS7.5AI score0.00436EPSS
Exploits0
OpenVAS
OpenVASadded 2025/06/02 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2025:01769-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.3AI score0.00436EPSS
Exploits0References4
OpenVAS
OpenVASadded 2025/06/02 12:0 a.m.10 views

Debian: Security Advisory (DSA-5932-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.00994EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/05/29 12:0 a.m.10 views

AlmaLinux 8 : firefox (ALSA-2025:8308)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:8308 advisory. firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details CVE-2025-5267 firefox: thunderbird: Potential local...

8.1CVSS7AI score0.00436EPSS
Exploits0References8
Debian
Debianadded 2025/05/28 5:35 p.m.11 views

[SECURITY] [DSA 5926-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5926-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 28, 2025 https://www.debian.org/security/faq -...

8.1CVSS7.4AI score0.00436EPSS
Exploits0
OSV
OSVadded 2025/05/27 1:15 p.m.5 views

CVE-2025-5264

Due to insufficient escaping of the newline character in the “Copy as cURL” feature, an attacker could trick a user into using this command, potentially leading to local code execution on the user's system. This vulnerability affects Firefox 139, Firefox ESR 115.24, Firefox ESR 128.11, Thunderbir...

4.8CVSS5.6AI score
Exploits0References8
NVD
NVDadded 2025/05/27 1:15 p.m.15 views

CVE-2025-5264

Due to insufficient escaping of the newline character in the “Copy as cURL” feature, an attacker could trick a user into using this command, potentially leading to local code execution on the user's system. This vulnerability was fixed in Firefox 139, Firefox ESR 115.24, Firefox ESR 128.11,...

4.8CVSS0.00134EPSS
Exploits0References8
Circl
Circladded 2025/05/27 12:48 p.m.10 views

CVE-2025-5264

creationtimestamp| type| source ---|---|--- 2025-05-27 12:48:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17629 2025-05-27 13:16:33+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq5rfrwgfuz2 2025-05-27 14:21:13+00:00| seen|...

4.8CVSS6.2AI score0.00134EPSS
Exploits0References4
Rows per page
Query Builder