VulnerableCode Package Details - pkg:rpm/redhat/thunderbird@128.2.0-1?arch=el8_10

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/thunderbird@128.2.0-1?arch=el8_10

Essentials
History (8)

purl	pkg:rpm/redhat/thunderbird@128.2.0-1?arch=el8_10

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.4

Vulnerabilities affecting this package (8)

Vulnerability	Summary	Fixed by
VCID-3ayf-d2s1-67ff Aliases: CVE-2024-8382	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.
VCID-3sjh-f264-m3g7 Aliases: CVE-2024-8387	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.
VCID-62zr-8w1c-bydt Aliases: CVE-2024-8394	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.
VCID-hetc-sghb-1fcx Aliases: CVE-2024-8384	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.
VCID-m9h1-aw7r-jqb2 Aliases: CVE-2024-7652	An error in the ECMA-262 specification relating to Async Generators could have resulted in a type confusion, potentially leading to memory corruption and an exploitable crash.	There are no reported fixed by versions.
VCID-pst5-367g-h7cs Aliases: CVE-2024-8386	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.
VCID-qd97-asaa-2fey Aliases: CVE-2024-8385	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.
VCID-ux24-3d83-23c6 Aliases: CVE-2024-8381	Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:45:33.711050+00:00	RedHat Importer	Affected by	VCID-3sjh-f264-m3g7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8387.json	38.0.0
2026-04-01T13:45:33.060028+00:00	RedHat Importer	Affected by	VCID-pst5-367g-h7cs	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8386.json	38.0.0
2026-04-01T13:45:32.449468+00:00	RedHat Importer	Affected by	VCID-qd97-asaa-2fey	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8385.json	38.0.0
2026-04-01T13:45:31.798668+00:00	RedHat Importer	Affected by	VCID-hetc-sghb-1fcx	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8384.json	38.0.0
2026-04-01T13:45:30.944149+00:00	RedHat Importer	Affected by	VCID-3ayf-d2s1-67ff	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8382.json	38.0.0
2026-04-01T13:45:30.364502+00:00	RedHat Importer	Affected by	VCID-ux24-3d83-23c6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8381.json	38.0.0
2026-04-01T13:45:26.901425+00:00	RedHat Importer	Affected by	VCID-62zr-8w1c-bydt	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8394.json	38.0.0
2026-04-01T13:45:26.503295+00:00	RedHat Importer	Affected by	VCID-m9h1-aw7r-jqb2	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7652.json	38.0.0