Vulnerabilities > Mozilla > Thunderbird > 91.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-02 | CVE-2023-32213 | Use of Uninitialized Resource vulnerability in Mozilla Firefox When reading a file, an uninitialized value could have been used as read limit. | 8.8 |
| 2023-06-02 | CVE-2023-32215 | Out-of-bounds Write vulnerability in Mozilla Firefox Mozilla developers and community members Gabriele Svelto, Andrew Osmond, Emily McDonough, Sebastian Hengst, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 112 and Firefox ESR 102.10. | 8.8 |
| 2022-12-22 | CVE-2022-1529 | Unspecified vulnerability in Mozilla Thunderbird An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the privileged parent process. | 8.8 |
| 2022-12-22 | CVE-2022-1802 | Unspecified vulnerability in Mozilla Thunderbird If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution of attacker-controlled JavaScript code in a privileged context. | 8.8 |
| 2022-12-22 | CVE-2022-1834 | Improper Certificate Validation vulnerability in Mozilla Thunderbird When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces. | 6.5 |
| 2022-12-22 | CVE-2022-2200 | Unspecified vulnerability in Mozilla Firefox If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading to privileged code execution. | 8.8 |
| 2022-12-22 | CVE-2022-2226 | Authentication Bypass by Capture-replay vulnerability in Mozilla Thunderbird An OpenPGP digital signature includes information about the date when the signature was created. | 6.5 |
| 2022-12-22 | CVE-2022-2505 | Out-of-bounds Write vulnerability in Mozilla Thunderbird Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 102. | 8.8 |
| 2022-12-22 | CVE-2022-31736 | Unspecified vulnerability in Mozilla Firefox A malicious website could have learned the size of a cross-origin resource that supported Range requests. | 9.8 |
| 2022-12-22 | CVE-2022-31737 | Out-of-bounds Write vulnerability in Mozilla Firefox A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash. | 9.8 |