Format string

2018-06-1121:29:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.5%

JSON

It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via “View -> Feed article -> Website” or in the standard format of “View -> Feed article -> default format”. This vulnerability affects Thunderbird < 52.5.2.

CPENameOperatorVersion
debian_linuxeq8.0
debian_linuxeq7.0
debian_linuxeq9.0
thunderbirdlt52.5.2
enterprise_linux_desktopeq7.0
enterprise_linux_desktopeq6.0
enterprise_linux_servereq7.0
enterprise_linux_servereq6.0
enterprise_linux_server_auseq7.4
enterprise_linux_server_euseq7.4

Name	Operator	Version
debian_linux	eq	8.0
debian_linux	eq	7.0
debian_linux	eq	9.0
thunderbird	lt	52.5.2
enterprise_linux_desktop	eq	7.0
enterprise_linux_desktop	eq	6.0
enterprise_linux_server	eq	7.0
enterprise_linux_server	eq	6.0
enterprise_linux_server_aus	eq	7.4
enterprise_linux_server_eus	eq	7.4