Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2025-3877 · VulnScope

CVE-2025-3877

Description

Rejected reason: This CVE was marked as fixed, but due to other code landing - was not actually fixed. It was subsequently fixed in CVE-2025-5986.

How to fix CVE-2025-3877

To remediate CVE-2025-3877, upgrade the affected package to a fixed version below.

Debian/thunderbird—upgrade to 1:128.10.1esr-1~deb11u1 or later

Is CVE-2025-3877 being exploited?

No exploitation signal available. Neither CISA KEV nor a current EPSS score has been published for CVE-2025-3877.

Affected packages (1)

Debian/thunderbirdfrom 0, < 1:128.10.1esr-1~deb11u1

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2025-3877

Metadata

Published: 5/14/2025
Modified: 4/16/2026

Also known as:

ALSA-2025:8196other
ALSA-2025:8756other
openSUSE-SU-2025:15131-1other
SUSE-SU-2025:01660-1suse
SUSE-SU-2025:01660-2suse