CNNVD-202508-2241 Information
CNNVD ID
CNNVD-202508-2241
Related CVE
- CNNVD Published: 2025-08-19
Description (Chinese)
Mozilla Firefox和Mozilla Thunderbird都是美国Mozilla基金会的产品。Mozilla Firefox是一款开源Web浏览器。Mozilla Thunderbird是一套从Mozilla Application Suite独立出来的电子邮件客户端软件。该软件支持IMAP、POP邮件协议以及HTML邮件格式。 Mozilla多款产品存在安全漏洞,该漏洞源于存在内存安全问题可能导致执行任意代码。以下产品及版本受到影响:Firefox 142之前版本、Firefox ESR 140.2之前版本、Thunderbird 142之前版本和Thunderbird 140.2之前版本。
Description (English)
Mozilla Firefox and Mozilla Thunderbird are products of the Mozilla Foundation in the United States. Mozilla Firefox is an open-source Web browser. Mozilla Thunderbird is an independent email client from Mozilla Application Suite. The software supports IMAP, POP mail protocols and HTML mail formats. There is a safety gap in Mozilla ’ s many products, which stems from the existence of memory security problems that may lead to the enforcement of arbitrary codes. The following products and versions were affected: the pre-Firefox 142, the pre-Firefox ESR 1402, the pre-Thunderbird 142 and the pre-Thunderbird 140.2.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Mozilla
Published
2025-08-19
Last Modified
2026-02-24
References
https://www.mozilla.org/security/advisories/mfsa2025-72/ https://www.mozilla.org/security/advisories/mfsa2025-64/ https://www.mozilla.org/security/advisories/mfsa2025-67/ https://bugzilla.mozilla.org/buglist.cgi?bug_id=1929482%2C1976376%2C1979163%2C1979955 https://www.mozilla.org/security/advisories/mfsa2025-70/ https://nvd.nist.gov/vuln/detail/CVE-2025-9184
Patch
https://www.mozilla.org/security/advisories/mfsa2025-64/
Share on: