vulnerability
Ubuntu: (CVE-2025-49709): thunderbird vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jun 11, 2025 | Jun 26, 2025 | Apr 15, 2026 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jun 11, 2025
Added
Jun 26, 2025
Modified
Apr 15, 2026
Description
Certain canvas operations could have lead to memory corruption. This vulnerability was fixed in Firefox 139.0.4.
Solution
no-fix-ubuntu-package
References
- CVE-2025-49709
- https://attackerkb.com/topics/CVE-2025-49709
- CWE-787
- EUVD-EUVD-2025-18101
- https://bugzilla.mozilla.org/show_bug.cgi?id=1966083
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-18101
- https://www.cve.org/CVERecord?id=CVE-2025-49709
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-47/#CVE-2025-49709
- https://www.mozilla.org/security/advisories/mfsa2025-47/
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.