Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:NMozilla Firefox
APPMozilla< 140.1.0< 141.0Mozilla Thunderbird
APPMozilla< 140.1.0< 141.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2024-9680CRITICAL9.8⚠ KEVPL ✓ten sam produkt
Use-after-free w Animation timelines Firefox/Thunderbird — RCE
CVE-2022-26486CRITICAL9.6⚠ KEVten sam produkt
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escap...
CVE-2019-11708CRITICAL10.0⚠ KEVten sam produkt
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes ...
CVE-2010-3765CRITICAL9.8⚠ KEVten sam produkt
Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before...
CVE-2026-14241CRITICAL9.8ten sam produkt
Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we ...