The current version of Thunderbird is 152.0.1 (as of 08/07/2026).
Thunderbird
MZLA / Mozilla · current 152.0.1
Actively exploited vulnerabilities
The US cybersecurity agency CISA lists these vulnerabilities in its catalog of Known Exploited Vulnerabilities. Check your version and patch or mitigate promptly.
- CVE-2019-17026Mozilla Firefox And Thunderbird Type Confusion Vulnerability
- CVE-2020-6820Mozilla Firefox And Thunderbird Use-After-Free Vulnerability
- CVE-2020-6819Mozilla Firefox And Thunderbird Use-After-Free Vulnerability
- CVE-2013-1690Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability
- CVE-2019-11708Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability
- CVE-2019-11707Mozilla Firefox and Thunderbird Type Confusion Vulnerability
- CVE-2016-9079Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability
Source: CISA KEV. The CVE is matched to the product automatically — when in doubt, the linked NVD entry applies.
Thunderbird at a glance
Mozilla Thunderbird is a widely used open-source email client, also common in organizations. Mozilla ships a major release yearly (ESR-style) plus regular security fixes; as a client that renders messages and handles attachments, timely updates matter.
For admins Thunderbird can be centrally managed through policies, covering updates, accounts and features. Security updates should be applied promptly — email is a primary attack vector, and the client parses untrusted content. The built-in updater keeps standalone installs current; managed fleets use the enterprise installer plus policy. Major-version jumps warrant a check of add-ons and account/config compatibility. Manage add-ons and the message-display settings deliberately in sensitive environments. Track the version and its support window.
Release history · as detected by patchletter
| Version | Channel | Date | Notes |
|---|---|---|---|
| 152.0.1 | STABLE | 08/07/2026 | – |
Never miss a Thunderbird update
We check the source daily and email you — instantly or as a digest. Free, one-click unsubscribe.
Watch Thunderbird