Vulnerabilities > Mozilla > Thunderbird > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-29 | CVE-2024-10458 | Unspecified vulnerability in Mozilla Thunderbird A permission leak could have occurred from a trusted site to an untrusted site via `embed` or `object` elements. | 7.5 |
| 2024-10-29 | CVE-2024-10459 | Use After Free vulnerability in Mozilla Thunderbird An attacker could have caused a use-after-free when accessibility was enabled, leading to a potentially exploitable crash. | 7.5 |
| 2024-10-29 | CVE-2024-10466 | Unspecified vulnerability in Mozilla Thunderbird By sending a specially crafted push message, a remote server could have hung the parent process, causing the browser to become unresponsive. | 7.5 |
| 2024-10-29 | CVE-2024-10467 | Out-of-bounds Write vulnerability in Mozilla Thunderbird Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. | 8.8 |
| 2024-10-01 | CVE-2024-9393 | Unspecified vulnerability in Mozilla Firefox An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://pdf.js` origin. | 7.5 |
| 2024-10-01 | CVE-2024-9394 | Unspecified vulnerability in Mozilla Firefox An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under the `resource://devtools` origin. | 7.5 |
| 2024-10-01 | CVE-2024-9399 | Unspecified vulnerability in Mozilla Thunderbird A website configured to initiate a specially crafted WebTransport session could crash the Firefox process leading to a denial of service condition. | 7.5 |
| 2024-08-06 | CVE-2024-7520 | Type Confusion vulnerability in Mozilla Firefox A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code execution. | 8.8 |
| 2024-08-06 | CVE-2024-7521 | Improper Handling of Exceptional Conditions vulnerability in Mozilla Firefox Incomplete WebAssembly exception handing could have led to a use-after-free. | 8.8 |
| 2024-08-06 | CVE-2024-7522 | Out-of-bounds Read vulnerability in Mozilla Firefox Editor code failed to check an attribute value. | 8.8 |