VulnerableCode Package Details - pkg:apk/alpine/thunderbird@68.8.0-r0?arch=x86&distroversion=edge&reponame=community

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-5666-pp89-aqc2	The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command execution.Note: this issue only affects Firefox on Windows operating systems.	CVE-2020-12393
VCID-8hqw-tgvq-pucf	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2020-12392
VCID-a6wm-rraf-gbh9	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2020-6831
VCID-gfdf-pxta-xbg1	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2020-12387
VCID-jajw-gyuh-v3dj	Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.	CVE-2020-12395
VCID-ucyq-vbwq-r7f3	Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.	CVE-2020-12397

Vulnerability

Summary

Aliases

VCID-5666-pp89-aqc2

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command execution.*Note: this issue only affects Firefox on Windows operating systems.*

CVE-2020-12393

VCID-8hqw-tgvq-pucf

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2020-12392

VCID-a6wm-rraf-gbh9

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2020-6831

VCID-gfdf-pxta-xbg1

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2020-12387

VCID-jajw-gyuh-v3dj

Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code.

CVE-2020-12395

VCID-ucyq-vbwq-r7f3

Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

CVE-2020-12397

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T04:52:46.030528+00:00	Alpine Linux Importer	Fixing	VCID-jajw-gyuh-v3dj	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-03T17:56:17.426812+00:00	Alpine Linux Importer	Fixing	VCID-8hqw-tgvq-pucf	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-03T17:49:14.142616+00:00	Alpine Linux Importer	Fixing	VCID-a6wm-rraf-gbh9	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-01T19:19:42.844456+00:00	Alpine Linux Importer	Fixing	VCID-ucyq-vbwq-r7f3	https://secdb.alpinelinux.org/edge/community.json	38.0.0
2026-04-01T19:04:32.192099+00:00	Alpine Linux Importer	Fixing	VCID-5666-pp89-aqc2	https://secdb.alpinelinux.org/edge/community.json	38.0.0
2026-04-01T18:52:55.538437+00:00	Alpine Linux Importer	Fixing	VCID-gfdf-pxta-xbg1	https://secdb.alpinelinux.org/edge/community.json	38.0.0