CVE-2025-8036HIGH 8.1EPSS p32.5%

CVE-2025-8036CVE-2025-8036

Description

Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS0.41% probability of exploitation · percentile 32.5% · 2026-06-19T12:03:05Z
Published2025-07-22
Last modified2026-04-13

Underlying weaknesses· 1

CWE-350

References

  1. https://bugzilla.mozilla.org/show_bug.cgi?id=1960834
  2. https://www.mozilla.org/security/advisories/mfsa2025-56/
  3. https://www.mozilla.org/security/advisories/mfsa2025-59/
  4. https://www.mozilla.org/security/advisories/mfsa2025-61/
  5. https://www.mozilla.org/security/advisories/mfsa2025-63/
  6. https://www.kb.cert.org/vuls/id/652514

1

TypeTargetConfidenceTier
WeaknessReliance on Reverse DNS Resolution for a Security-Critical Actioncwe-3500%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-8948
CVE
CVE-2026-8950
CVE
CVE-2025-8038
CVE
CVE-2026-2791
CVE
CVE-2026-2790
CVE
CVE-2025-13017
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.