Mozilla Thunderbird up to 128.10.0/138.0.0 HTML Email access control 🚫 [False Positive]

Noticeinfo

⚠️ Further investigation has shown that this issues is a false-positive. Please review the sources mentioned and consider not using this entry at all.

Productinfo

Type

• Mail Client Software

Vendor

• Mozilla

Name

• Thunderbird

Version

• 128.0
• 128.1
• 128.2
• 128.3
• 128.4
• 128.5
• 128.6
• 128.7
• 128.8
• 128.9
• 128.10.0
• 138.0

License

• open-source

Website

• Vendor: https://www.mozilla.org/

Timelineinfo

04/22/2025 🔍
05/14/2025 +22 days 🔍
05/14/2025 +0 days 🔍
08/16/2025 +94 days 🔍

Sourcesinfo

Vendor: mozilla.org

Advisory: bugzilla.mozilla.org
False Positive: Yes

CVE: CVE-2025-3877 (🔍)
GCVE (CVE): GCVE-0-2025-3877
GCVE (VulDB): GCVE-100-308923
EUVD: 🔍
CERT Bund: WID-SEC-2025-1850 - Xerox FreeFlow Print Server: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff

Entryinfo

Created: 05/14/2025 19:56
Updated: 08/16/2025 08:56
Changes: 05/14/2025 19:56 (56), 05/15/2025 19:13 (1), 05/17/2025 12:00 (2), 06/11/2025 16:41 (3), 08/16/2025 08:56 (7)
Complete: 🔍
Cache ID: 216::103

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Discussion

Do you want to use VulDB in your project?

Use the official API to access entries easily!