CVE-2025-4090
published 2025-04-29CVE-2025-4090: A vulnerability existed in Thunderbird for Android where potentially sensitive library locations were logged via Logcat. This vulnerability was fixed in…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
A vulnerability existed in Thunderbird for Android where potentially sensitive library locations were logged via Logcat. This vulnerability was fixed in Firefox 138 and Thunderbird 138.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | — | — |
| ericsson | codechecker | >= 0 < 6.26.2 | 6.26.2 |
| mozilla | firefox | < 138.0 | 138.0 |
| mozilla | firefox | — | — |
| mozilla | thunderbird | < 138.0 | 138.0 |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
osv5.3MEDIUM