CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в thunderbird

An HTML email containing links to .pdf files can trigger automatic, unsolicited downloads of those files to the user’s desktop or home directory without any prompts, even if auto-saving is disabled. This behavior can be exploited to fill the disk with junk data e.g., using /dev/urandom on Linux o...

6.5CVSS5.7AI score0.00583EPSS

Exploits0References2

Tenable Nessus•added 2026/01/13 12:0 a.m.•3 views

MiracleLinux 8 : thunderbird-128.12.0-1.el8_10.ML.1 (AXSA:2025-10437:13)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10437:13 advisory. thunderbird: Unsolicited File Download, Disk Space Exhaustion, and Credential Leakage via mailbox:/// Links CVE-2025-5986 Tenable has extracted the precedin...

6.5CVSS7.1AI score0.00583EPSS

Exploits0References2

Tenable Nessus•added 2026/01/13 12:0 a.m.•2 views

MiracleLinux 9 : thunderbird-128.10.1-1.el9_6.ML.1 (AXSA:2025-10505:15)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-10505:15 advisory. thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header...

8.1CVSS6.9AI score0.00422EPSS

Exploits0References4

Tenable Nessus•added 2025/10/06 12:0 a.m.•2 views

RockyLinux 10 : thunderbird (RLSA-2025:10195)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:10195 advisory. thunderbird: Unsolicited File Download, Disk Space Exhaustion, and Credential Leakage via mailbox:/// Links CVE-2025-5986 Tenable has extracted the...

9.8CVSS6.4AI score0.01103EPSS

Exploits0References11

Rockylinux•added 2025/10/04 12:11 a.m.•8 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. Security...

8.1CVSS8.5AI score0.00422EPSS

Exploits0

Tenable Nessus•added 2025/10/04 12:0 a.m.•2 views

RockyLinux 10 : thunderbird (RLSA-2025:8196)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8196 advisory. thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header in...

8.1CVSS6.8AI score0.00422EPSS

Exploits0References8

Rockylinux•added 2025/10/03 7:56 p.m.•3 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. Security...

8.1CVSS7AI score0.00422EPSS

Exploits0