Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/thunderbird@115.12.1-1?arch=el9_4
purl pkg:rpm/redhat/thunderbird@115.12.1-1?arch=el9_4
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (7)
Vulnerability Summary Fixed by
VCID-7vfx-u76f-ubet
Aliases:
CVE-2024-5691
By tricking the browser with a X-Frame-Options header, a sandboxed iframe could have presented a button that, if clicked by a user, would bypass restrictions to open a new window. There are no reported fixed by versions.
VCID-b9aw-u5wp-6uhk
Aliases:
CVE-2024-5693
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. There are no reported fixed by versions.
VCID-bshu-jxhj-27b8
Aliases:
CVE-2024-5700
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. There are no reported fixed by versions.
VCID-gpjz-649k-f3he
Aliases:
CVE-2024-5696
Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. There are no reported fixed by versions.
VCID-s95f-9g8b-s3es
Aliases:
CVE-2024-5690
By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system. There are no reported fixed by versions.
VCID-u9pc-4b61-gkeg
Aliases:
CVE-2024-5702
Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could lead to remote code execution. There are no reported fixed by versions.
VCID-v789-nhyw-wugk
Aliases:
CVE-2024-5688
If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:46:56.879595+00:00 RedHat Importer Affected by VCID-bshu-jxhj-27b8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5700.json 38.0.0
2026-04-01T13:46:56.195220+00:00 RedHat Importer Affected by VCID-gpjz-649k-f3he https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5696.json 38.0.0
2026-04-01T13:46:55.509389+00:00 RedHat Importer Affected by VCID-b9aw-u5wp-6uhk https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5693.json 38.0.0
2026-04-01T13:46:54.844743+00:00 RedHat Importer Affected by VCID-7vfx-u76f-ubet https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5691.json 38.0.0
2026-04-01T13:46:54.139354+00:00 RedHat Importer Affected by VCID-s95f-9g8b-s3es https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5690.json 38.0.0
2026-04-01T13:46:53.494490+00:00 RedHat Importer Affected by VCID-v789-nhyw-wugk https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5688.json 38.0.0
2026-04-01T13:46:52.810571+00:00 RedHat Importer Affected by VCID-u9pc-4b61-gkeg https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5702.json 38.0.0