Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2025/02/04 2:15 p.m.4 views

CVE-2025-0510

Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability was fixed in Thunderbird 128.7 and Thunderbird 135...

7.5CVSS7.3AI score0.07748EPSS
Exploits0References4
NVD
NVD
added 2025/02/04 2:15 p.m.18 views

CVE-2025-0510

Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability was fixed in Thunderbird 128.7 and Thunderbird 135...

6.5CVSS0.00233EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/04 1:58 p.m.10 views

CVE-2025-0510 Address of e-mail sender can be spoofed by malicious email

Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability was fixed in Thunderbird 128.7 and Thunderbird 135...

7.3AI score0.00233EPSS
Exploits0References3
CVE
CVE
added 2025/02/04 1:58 p.m.121 views

CVE-2025-0510

Thunderbird vulnerability: The From address can be displayed incorrectly when the From field uses the invalid group name syntax described in CVE-2024-49040. Affects Thunderbird <128.7 and

6.5CVSS7.3AI score0.00233EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/02/04 1:58 p.m.12 views

CVE-2025-0510 Address of e-mail sender can be spoofed by malicious email

Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040. This vulnerability was fixed in Thunderbird 128.7 and Thunderbird 135...

0.00233EPSS
Exploits0References3
Mozilla
Mozilla
added 2025/02/04 12:0 a.m.14 views

Security Vulnerabilities fixed in Thunderbird ESR 128.7 — Mozilla

An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. A bug in WebAssembly code generation could have lead to a cras...

9.8CVSS10AI score0.07748EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder