Lucene search
K

17 matches found

EUVD
EUVD
added 2026/06/16 11:52 a.m.7 views

EUVD-2026-37098

Memory safety bug fixed in Thunderbird 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12...

5.3CVSS5.2AI score0.00261EPSS
Exploits0References5
CVE
CVE
added 2026/06/16 11:52 a.m.32 views

CVE-2026-12295

CVE-2026-12295 describes a sandbox escape in the DOM: Navigation component affecting Mozilla Firefox and Thunderbird. The vulnerability is fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12. The entry lists a CVSS v3.1 base score of 9.6 (CRITICAL...

9.6CVSS5.2AI score0.00393EPSS
Exploits0References19Affected Software2
CVE
CVE
added 2026/06/16 11:52 a.m.53 views

CVE-2026-12289

CVE-2026-12289 describes a privilege-escalation vulnerability in the Graphics: WebRender component. The public description and connected advisories indicate this affects Mozilla Firefox and Thunderbird products, with fixes shipped in: Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbi...

8.8CVSS5.2AI score0.00395EPSS
Exploits0References19Affected Software2
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.8 views

PT-2026-49682

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 Description An information disclosure and sandbox escape issue exists within the Security: Process...

9.1CVSS5.8AI score0.00476EPSS
Exploits0References185
Vulnrichment
Vulnrichment
added 2026/05/19 12:29 p.m.9 views

CVE-2026-8953 Sandbox escape due to use-after-free in the Disability Access APIs component

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

5.8AI score0.00532EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/21 3:32 p.m.8 views

EUVD-2026-24098

Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10...

5.8AI score0.00293EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/21 3:32 p.m.6 views

EUVD-2026-24103

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, and Firefox ESR 140.10...

5.8AI score0.00157EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/21 3:32 p.m.5 views

EUVD-2026-24088

Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150 and Firefox ESR 140.10...

7.5CVSS5.8AI score0.004EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/21 12:41 p.m.4 views

CVE-2026-6781

Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

7.5CVSS5.8AI score0.00294EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/21 12:41 p.m.40 views

CVE-2026-6774 Mitigation bypass in the DOM: Security component

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

0.00153EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/21 12:40 p.m.37 views

CVE-2026-6755 Mitigation bypass in the DOM: postMessage component

Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

0.00189EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/21 12:40 p.m.3 views

CVE-2026-6755 Mitigation bypass in the DOM: postMessage component

Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

5.8AI score0.00189EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/21 12:40 p.m.5 views

CVE-2026-6754 Use-after-free in the JavaScript Engine component

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10...

5.7AI score0.00387EPSS
Exploits0References6
CVE
CVE
added 2026/04/21 12:40 p.m.64 views

CVE-2026-6754

CVE-2026-6754 is a memory-safety issue (Use-after-free) in the JavaScript Engine component that was fixed in Firefox 150 and related ESR branches, as well as Thunderbird 150/140.x lines. Public advisories confirm the flaw in the JavaScript engine leads to a potentially exploitable memory corrupti...

7.5CVSS5.7AI score0.00387EPSS
Exploits0References36Affected Software2
Cvelist
Cvelist
added 2026/04/21 12:40 p.m.33 views

CVE-2026-6746 Use-after-free in the DOM: Core & HTML component

Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10...

0.00586EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.8 views

PT-2026-33968

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 150 Thunderbird versions prior to 150 Description Information disclosure occurs in the IP Protection component. Recommendations Update Firefox to version 150. Update Thunderbird to version 150...

9.8CVSS5.1AI score0.04938EPSS
Exploits1References47
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.7 views

PT-2026-33970

Name of the Vulnerable Software and Affected Versions Firefox version 149 Thunderbird version 149 Description Memory safety bugs exist that show evidence of memory corruption, which could potentially be exploited to execute arbitrary code. Recommendations Update Firefox to version 150. Update...

8.8CVSS6AI score0.00302EPSS
Exploits0References59
Rows per page
Query Builder