11 matches found
Amazon Linux 2 : thunderbird, --advisory ALAS2-2026-3167 (ALAS-2026-3167)
The version of thunderbird installed on the remote host is prior to 140.7.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3167 advisory. Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox 146. CVE-2025-14327 CSS-based...
MGASA-2026-0036 Updated thunderbird packages fix security vulnerability
CSS-based exfiltration of the content from partially encrypted emails when allowing remote content. CVE-2026-0818...
openSUSE Security Advisory (SUSE-SU-2026:0388-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2026:0388-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0388-1 advisory. Update to Mozilla Thunderbird 140.7.1 MFSA 2026-08 bsc1257397: - CVE-2026-0818: CSS-based exfiltration of...
Debian: Security Advisory (DLA-4466-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-4466 : thunderbird - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4466 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4466-1 [email protected] https://www.debian.org/lts/security/...
Debian dsa-6118 : thunderbird - security update
The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6118 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6118-1 [email protected] https://www.debian.org/security/...
CVE-2026-0818
When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If...
CVE-2026-0818
creationtimestamp| type| source ---|---|--- 2026-01-28 09:39:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdhy4h375d2j 2026-01-28 15:35:24+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mdilylrr5r2h 2026-02-04 00:38:27+00:00| seen|...
Mozilla Thunderbird < 147.0.1
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 147.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2026-07 advisory. - When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text...
Mozilla Thunderbird < 140.7.1
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 140.7.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2026-08 advisory. - When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text...