CVE-2025-11719

Starting in Thunderbird 143, the use of the native messaging API by web extensions on Windows could lead to crashes caused by use-after-free memory corruption. This vulnerability affects Firefox < 144 and Thunderbird < 144.

Published Oct 17, 2025

https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/#:~:text=Bug%201986142-,%23,free%20caused%20by%20the%20native%20messaging%20web%20extension%20API%20on%20Windows,-Reporter

CVSS ScoreCritical

9.8

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2025-11719

Starting in Thunderbird 143, the use of the native messaging API by web extensions on Windows could lead to crashes caused by use-after-free memory corruption. This vulnerability affects Firefox < 144 and Thunderbird < 144.

Published Oct 17, 2025

https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/#:~:text=Bug%201986142-,%23,free%20caused%20by%20the%20native%20messaging%20web%20extension%20API%20on%20Windows,-Reporter

CVSS ScoreCritical

9.8

No packages found

Try adjusting your search terms.

Ecosystem	Package	Version

No packages found

Try adjusting your search terms.

Find vulnerabilities. Fix fast with AI.

CVE-2025-11719

CVE-2025-11719

No packages found

No packages found