HIGHCVE-2026-4371Published Modified CNA mozilla
CVE-2026-4371: Out of bounds read in IMAP parsing
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking sensitive data. This vulnerability was fixed in Thunderbird 149 and Thunderbird 140.9.
Metrics
- CVSS v3.1
- 7.4
- Severity
- HIGH
- Fixed in
- 140.9
- Affected Products
- 1
Fix available
140.9149
Affected packages
- Mozilla / ThunderbirdFixed in 140.9, 149
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H