Primary

Context

Mozilla Thunderbird WebGL Shader Attribute Memory Corruption Vulnerability on macOS

Vulnerability

Patched

A vulnerability exists in Mozilla Thunderbird for macOS, where modification of specific WebGL shader attributes can lead to an out-of-bounds read. This memory corruption, when combined with other vulnerabilities, could be exploited to escalate privileges. Notably, this issue does not affect other versions of Thunderbird.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation.

Remediation

Users can upgrade to Thunderbird 138 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mozilla Thunderbird WebGL Shader Attribute Memory Corruption Vulnerability on macOS

Vulnerability

Impact

Remediation

Affected Products

Mozilla Firefox

Mozilla Firefox ESR

Mozilla Thunderbird

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating