Known Vulnerabilities for Thunderbird by Mozilla
Listed below are 10 of the newest known vulnerabilities associated with "Thunderbird" by "Mozilla".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22745 | Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations. This vulnerability ... | 6.5 - MEDIUM | 2022-12-22 | 2022-12-29 |
| CVE-2022-22744 | The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell. This could ... | 8.8 - HIGH | 2022-12-22 | 2023-08-08 |
| CVE-2022-22743 | When navigating from inside an iframe while requesting fullscreen access, an attacker-controlled tab could have made the brow... | 4.3 - MEDIUM | 2022-12-22 | 2022-12-29 |
| CVE-2022-22742 | When inserting text while in edit mode, some characters might have lead to out-of-bounds memory access causing a potentially ... | 6.5 - MEDIUM | 2022-12-22 | 2022-12-29 |
| CVE-2022-22741 | When resizing a popup while requesting fullscreen access, the popup would have become unable to leave fullscreen mode. This v... | 7.5 - HIGH | 2022-12-22 | 2022-12-29 |
| CVE-2022-22740 | Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-a... | 8.8 - HIGH | 2022-12-22 | 2022-12-29 |
| CVE-2022-22739 | Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol. This vulne... | 6.5 - MEDIUM | 2022-12-22 | 2022-12-29 |
| CVE-2022-22738 | Applying a CSS filter effect could have accessed out of bounds memory. This could have lead to a heap-buffer-overflow causing... | 8.8 - HIGH | 2022-12-22 | 2022-12-29 |
| CVE-2022-22737 | Constructing audio sinks could have lead to a race condition when playing audio files and closing windows. This could have le... | 7.5 - HIGH | 2022-12-22 | 2023-08-08 |
| CVE-2022-0566 | It may be possible for an attacker to craft an email message that causes Thunderbird to perform an out-of-bounds write of one... | 8.8 - HIGH | 2022-12-22 | 2022-12-29 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mozilla | Thunderbird | 9.0.1 | All | All | All |
| Application | Mozilla | Thunderbird | 9.0 | All | All | All |
| Application | Mozilla | Thunderbird | 9.0 | beta1 | All | All |
| Application | Mozilla | Thunderbird | 9.0 | beta2 | All | All |
| Application | Mozilla | Thunderbird | 9.0 | beta3 | All | All |
| Application | Mozilla | Thunderbird | 9.0 | beta4 | All | All |
| Application | Mozilla | Thunderbird | 9.0 | beta5 | All | All |
| Application | Mozilla | Thunderbird | 8.0 | All | All | All |
| Application | Mozilla | Thunderbird | 8.0 | beta1 | All | All |
| Application | Mozilla | Thunderbird | 8.0 | beta2 | All | All |
| Application | Mozilla | Thunderbird | 8.0 | beta3 | All | All |
| Application | Mozilla | Thunderbird | 8.0 | beta4 | All | All |
| Application | Mozilla | Thunderbird | 8.0 | beta5 | All | All |
| Application | Mozilla | Thunderbird | 78.6.0 | All | All | All |
| Application | Mozilla | Thunderbird | 78.5.1 | All | All | All |
| Application | Mozilla | Thunderbird | 78.4.0 | All | All | All |
| Application | Mozilla | Thunderbird | 78.3 | All | All | All |
| Application | Mozilla | Thunderbird | 78.2 | All | All | All |
| Application | Mozilla | Thunderbird | 78.1.1 | All | All | All |
| Application | Mozilla | Thunderbird | 78.1.0 | All | All | All |