Primary

Context

Mozilla Thunderbird Spoofing Vulnerability

Vulnerability

Patched

A spoofing vulnerability has been identified in Mozilla Thunderbird versions prior to 149 and prior to 140.9. This issue arises from certain flaws that, while generally not exploitable through email due to disabled scripting, could pose risks in browser or browser-like contexts.

Impact

Exploitation of this vulnerability could lead to spoofing, allowing an attacker to misrepresent themselves or their intentions.

Remediation

Users can upgrade to Thunderbird versions 149 or 140.9 to address this vulnerability.

Added: Mar 24, 2026, 9:25 PM

Updated: Mar 24, 2026, 9:25 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.7

remediation

7.7

relevance

4.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.7

remediation

7.7

relevance

4.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mozilla Thunderbird Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Mozilla Thunderbird

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating