Shodan
Vulnerabilities
Vulnerable Software
Mozilla:  >> Thunderbird  >> 140.0  Security Vulnerabilities
CVE-2026-0879
Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVSS Score
9.8
EPSS Score
0.0
Published
2026-01-13
CVE-2026-0880
Sandbox escape due to integer overflow in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVSS Score
8.8
EPSS Score
0.0
Published
2026-01-13
CVE-2026-0882
Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVSS Score
8.8
EPSS Score
0.0
Published
2026-01-13
CVE-2026-0883
Information disclosure in the Networking component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVSS Score
5.3
EPSS Score
0.0
Published
2026-01-13
CVE-2026-0884
Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVSS Score
9.8
EPSS Score
0.0
Published
2026-01-13
CVE-2025-14325
JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
CVSS Score
7.3
EPSS Score
0.001
Published
2025-12-09
CVE-2025-14328
Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-12-09
CVE-2025-14329
Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-12-09
CVE-2025-14330
JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-12-09
CVE-2025-14331
Same-origin policy bypass in the Request Handling component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-12-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved