8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
27.3%
102.2.1-alt1 built Oct. 26, 2022 Andrey Cherepanov in task #307737
Sept. 6, 2022 Pavel Vasenkov
- New version.
- Security fixes:
+ CVE-2022-3033 Leaking of sensitive information when composing a response to an HTML email with a META refresh tag
+ CVE-2022-3032 Remote content specified in an HTML document that was nested inside an iframe's srcdoc attribute was not blocked
+ CVE-2022-3034 An iframe element in an HTML email could trigger a network request
+ CVE-2022-36059 Matrix SDK bundled with Thunderbird vulnerable to denial-of-service attack
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
27.3%