vulnerability
MFSA2025-85 Thunderbird: Security Vulnerabilities fixed in Thunderbird 140.4 (CVE-2025-11709)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Oct 14, 2025 | Oct 15, 2025 | Oct 24, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Oct 14, 2025
Added
Oct 15, 2025
Modified
Oct 24, 2025
Description
A compromised web process was able to trigger out of bounds reads and writes in a more privileged process using manipulated WebGL textures.
Solution
mozilla-thunderbird-upgrade-140_4
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.