Amazon Linux 2 : thunderbird (ALAS-2025-2807)

The version of thunderbird installed on the remote host is prior to 128.8.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2807 advisory. Requests initiated through reader mode did not properly omit cookies with a SameSite attribute. This vulnerability...

SUSE CVE-2025-2857

Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was...

Mozilla Firefox ESR Security Update (MFSA2025-19) - Windows

Firefox ESR is prone to a sandbox escape vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...