Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

49 matches found

SUSE CVE
SUSE CVEadded 2026/03/25 4:59 p.m.3 views

SUSE CVE-2026-4371

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

5.5CVSS7.2AI score0.00285EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2026/03/24 9:16 p.m.2 views

CVE-2026-4371

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

7.4CVSS7.2AI score0.00285EPSS
Exploits0References5
OSV
OSVadded 2026/03/24 9:16 p.m.5 views

UBUNTU-CVE-2026-4371

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

7.4CVSS7.2AI score0.00285EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/03/24 8:27 p.m.20 views

CVE-2026-4371 Out of bounds read in IMAP parsing

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

0.00285EPSS
Exploits0References3
CVE
CVEadded 2026/03/24 8:27 p.m.9 views

CVE-2026-4371

CVE-2026-4371 describes an out-of-bounds read in an IMAP/ mail parsing context. A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer and potentially crash Thunderbird or leak sensitive data. Affected products are Thunderb...

7.4CVSS7.2AI score0.00285EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/03/24 8:27 p.m.4 views

CVE-2026-4371

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

7.4CVSS7.9AI score0.00285EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/03/24 8:27 p.m.5 views

CVE-2026-4371 Out of bounds read in IMAP parsing

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

7.2AI score0.00285EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-10881

Malware in sbrugna...

8.8CVSS9.1AI score0.01206EPSS
Exploits0References20
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-16732

Malware in sbrugna...

9.8CVSS9.2AI score0.02687EPSS
Exploits0References16
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-7436

Malicious code in bioql PyPI...

7.5CVSS8.6AI score0.00497EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2025/08/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-0746

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Linux user opening the print preview dialog could have caused the browser to crash. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird...

6.5CVSS7.6AI score0.00732EPSS
Exploits0References2
OSV
OSVadded 2025/06/24 1:15 p.m.2 views

DEBIAN-CVE-2025-6424

A use-after-free in FontFaceSet resulted in a potentially exploitable crash. This vulnerability was fixed in Firefox 140, Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12...

9.8CVSS8.4AI score0.03057EPSS
Exploits0References1
NVD
NVDadded 2025/03/04 2:15 p.m.6 views

CVE-2025-1931

It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

7.5CVSS0.00497EPSS
Exploits0References7
AstraLinux
AstraLinuxadded 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Firefox, Thunderbird

A website configured to initiate a specially crafted WebTransport session could cause the Firefox process to crash, resulting in a denial-of-service condition. This vulnerability affects Firefox 131, Firefox ESR 128.3, Thunderbird 128.3, and Thunderbird 131...

7.5CVSS6.7AI score0.00498EPSS
Exploits0References4
AlpineLinux
AlpineLinuxadded 2025/02/04 2:15 p.m.2 views

CVE-2025-1010

An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability affects Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135...

9.8CVSS8.6AI score0.00432EPSS
Exploits0References8
OSV
OSVadded 2025/02/04 2:15 p.m.1 views

DEBIAN-CVE-2025-1010

An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135...

8.8CVSS8.5AI score0.00432EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2024/10/02 3:9 a.m.2 views

SUSE CVE-2024-9399

A website configured to initiate a specially crafted WebTransport session could crash the Firefox process leading to a denial of service condition. This vulnerability affects Firefox 131, Firefox ESR 128.3, Thunderbird 128.3, and Thunderbird 131...

4.3CVSS6.2AI score0.00498EPSS
Exploits0References13
RedHat Linux
RedHat Linuxadded 2024/09/17 11:30 a.m.5 views

thunderbird: Crash when aborting verification of OTR chat

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When aborting the verification of an OTR chat session, an attacker could have caused a use-after-free bug leading to a potentially exploitable crash...

6.5CVSS7.3AI score0.00312EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2024/09/17 11:28 a.m.5 views

thunderbird: Crash when aborting verification of OTR chat

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When aborting the verification of an OTR chat session, an attacker could have caused a use-after-free bug leading to a potentially exploitable crash...

6.5CVSS7.3AI score0.00312EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2024/09/16 12:24 p.m.3 views

thunderbird: Crash when aborting verification of OTR chat

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When aborting the verification of an OTR chat session, an attacker could have caused a use-after-free bug leading to a potentially exploitable crash...

6.5CVSS7.3AI score0.00312EPSS
Exploits0References6
Rows per page
Query Builder