thunderbird is vulnerable to arbitrary code execution attacks. The vulnerability exists as a use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash.