CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

132 matches found

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

5.3CVSS5.8AI score0.00251EPSS

Exploits0References6

Amazon•added 2026/05/14 12:0 a.m.•9 views

Important: thunderbird

Issue Overview: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox ESR 140.10.1. CVE-2026-7321 Memory safety bugs present in Firefox ESR 115.35.0, Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and...

9.6CVSS6.2AI score0.00314EPSS

Exploits0

Tenable Nessus•added 2026/03/25 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-4706

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbi...

7.5CVSS7.8AI score0.00452EPSS

Exploits0References2

Tenable Nessus•added 2026/03/25 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-4716

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9,...

9.1CVSS7.8AI score0.00407EPSS

Exploits0References2

Tenable Nessus•added 2026/03/25 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-4700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.8AI score0.00446EPSS

Exploits0References2

Tenable Nessus•added 2026/03/25 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-4685

7.5CVSS7.8AI score0.00533EPSS

Exploits0References2

Vulnrichment•added 2026/03/24 12:30 p.m.•8 views

CVE-2026-4713 Incorrect boundary conditions in the Graphics component

Incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.2AI score0.00433EPSS

Exploits0References5

Tenable Nessus•added 2026/02/25 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-2762

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the JavaScript: Standard Library component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird...

9.8CVSS5.8AI score0.00524EPSS

Exploits0References2

Tenable Nessus•added 2026/02/25 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-2788

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird...

9.8CVSS5.8AI score0.00416EPSS

Exploits0References2

UbuntuCve•added 2026/02/24 2:16 p.m.•4 views

CVE-2026-2764

JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00474EPSS

Exploits0References9

UbuntuCve•added 2026/02/24 2:16 p.m.•2 views

CVE-2026-2790

Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.8AI score0.00201EPSS

Exploits0References8

Vulnrichment•added 2026/02/24 1:33 p.m.•2 views

CVE-2026-2764 JIT miscompilation, use-after-free in the JavaScript Engine: JIT component

5.8AI score0.00474EPSS

Exploits0References6

RedHat Linux•added 2025/11/20 11:43 a.m.•4 views

firefox: thunderbird: Incorrect boundary conditions in the JavaScript: WebAssembly component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript: WebAssembly component...

7.5CVSS6AI score0.00401EPSS

Exploits0References5

RedHat Linux•added 2025/10/30 4:52 a.m.•4 views

thunderbird: firefox: Cross-process information leaked due to malicious IPC messages

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised process...

9.8CVSS7.3AI score0.00385EPSS

Exploits0References6