Vulnerabilities > Mozilla > Thunderbird > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-23 | CVE-2019-11691 | Use After Free vulnerability in Mozilla Thunderbird A use-after-free vulnerability can occur when working with XMLHttpRequest (XHR) in an event loop, causing the XHR main thread to be called after it has been freed. | 9.8 |
| 2019-07-23 | CVE-2019-11692 | Use After Free vulnerability in Mozilla Firefox A use-after-free vulnerability can occur when listeners are removed from the event listener manager while still in use, resulting in a potentially exploitable crash. | 9.8 |
| 2019-07-23 | CVE-2019-11693 | Out-of-bounds Write vulnerability in Mozilla Firefox The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. | 9.8 |
| 2019-07-23 | CVE-2019-11703 | Out-of-bounds Write vulnerability in Mozilla Thunderbird A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parser_get_next_char when processing certain email messages, resulting in a potentially exploitable crash. | 9.8 |
| 2019-07-23 | CVE-2019-11704 | Out-of-bounds Write vulnerability in Mozilla Thunderbird A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in icalmemory_strdup_and_dequote when processing certain email messages, resulting in a potentially exploitable crash. | 9.8 |
| 2019-07-23 | CVE-2019-11705 | Out-of-bounds Write vulnerability in Mozilla Thunderbird A flaw in Thunderbird's implementation of iCal causes a stack buffer overflow in icalrecur_add_bydayrules when processing certain email messages, resulting in a potentially exploitable crash. | 9.8 |
| 2019-07-23 | CVE-2019-11708 | Improper Input Validation vulnerability in Mozilla Firefox ESR Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. | 10.0 |
| 2019-07-23 | CVE-2019-11709 | Out-of-bounds Write vulnerability in multiple products Mozilla developers and community members reported memory safety bugs present in Firefox 67 and Firefox ESR 60.7. | 9.8 |
| 2019-07-23 | CVE-2019-11713 | Use After Free vulnerability in Mozilla Firefox A use-after-free vulnerability can occur in HTTP/2 when a cached HTTP/2 stream is closed while still in use, resulting in a potentially exploitable crash. | 9.8 |
| 2019-07-23 | CVE-2019-9800 | Out-of-bounds Write vulnerability in Mozilla Thunderbird Mozilla developers and community members reported memory safety bugs present in Firefox 66, Firefox ESR 60.6, and Thunderbird 60.6. | 9.8 |