Lucene search
K

20 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:46 a.m.2 views

SUSE CVE-2017-7848

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird 52.5.2...

5.3CVSS9AI score0.01763EPSS
Exploits0References5
NVD
NVD
added 2018/06/11 9:29 p.m.15 views

CVE-2017-7848

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird 52.5.2...

5.3CVSS5.3AI score0.01763EPSS
Exploits0References7
OSV
OSV
added 2018/06/11 9:29 p.m.4 views

CVE-2017-7848

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird 52.5.2...

5.3CVSS8.4AI score
Exploits0References7
CVE
CVE
added 2018/06/11 9:0 p.m.115 views

CVE-2017-7848

CVE-2017-7848 affects Mozilla Thunderbird prior to 52.5.2. The issue allows RSS fields to inject new lines into the created email structure, altering the message body. Public entries and advisories confirm Thunderbird upgrades to 52.5.2 as the fix (e.g., CentOS/RHSA-2018:0061, Debian DSA-4075-1 a...

5.3CVSS6.1AI score0.01763EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.23 views

CVE-2017-7848

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird 52.5.2...

5.3CVSS6.9AI score0.01763EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/01/30 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-3529-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.07262EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/30 12:0 a.m.26 views

Ubuntu 14.04 LTS / 16.04 LTS : Thunderbird vulnerabilities (USN-3529-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3529-1 advisory. It was discovered that a From address encoded with a null character is cut off in the message header display. An attacker could potentially...

9.8CVSS7.8AI score0.07262EPSS
Exploits1References15
Cent OS
Cent OS
added 2018/01/08 4:7 p.m.69 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2018:0061 An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...

8.8CVSS7AI score0.02008EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2018/01/08 4:49 a.m.61 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.1AI score0.02008EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2018/01/08 12:0 a.m.31 views

RedHat Update for thunderbird RHSA-2018:0061-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.6AI score0.02008EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/08 12:0 a.m.26 views

RHEL 6 / 7 : thunderbird (RHSA-2018:0061)

The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2018:0061 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.5.2. Security Fixes:...

8.8CVSS7.7AI score0.02008EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2018/01/02 9:19 a.m.27 views

CVE-2017-7848

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird 52.5.2...

5.3CVSS3.5AI score0.01763EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/01/02 12:0 a.m.35 views

Mozilla Thunderbird < 52.5.2

The version of Thunderbird installed on the remote Windows host is prior to 52.5.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-30 advisory. - It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via View -...

9.3CVSS7.8AI score0.03215EPSS
Exploits1References6
Debian
Debian
added 2017/12/29 9:58 p.m.31 views

[SECURITY] [DSA 4075-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4075-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 29, 2017 https://www.debian.org/security/faq -...

10CVSS9.1AI score0.07439EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2017/12/29 12:0 a.m.29 views

CVE-2017-7848

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird 52.5.2...

5.3CVSS6.8AI score0.01763EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2017/12/28 12:0 a.m.270 views

Debian: Security Advisory (DSA-4075-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.8AI score0.07439EPSS
Exploits1References4
Debian
Debian
added 2017/12/27 5:5 p.m.27 views

[SECURITY] [DLA 1223-1] thunderbird security update

Package : thunderbird Version : 1:52.5.2-1deb7u1 CVE ID : CVE-2017-7829 CVE-2017-7846 CVE-2017-7847 CVE-2017-7848 Multiple security issues have been found in the Mozilla Thunderbird mail client including information leaks, unintended JavaScript execution and sender address spoofing. For Debian 7...

8.8CVSS6.8AI score0.02008EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/12/26 12:0 a.m.74 views

Mozilla Thunderbird Security Advisories (MFSA2017-30, MFSA2017-30) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

8.8CVSS6.6AI score0.02008EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/25 3:7 a.m.81 views

Security update for Mozilla Thunderbird (important)

This update for Mozilla Thunderbird to version 52.5.2 fixes the following vulnerabilities: - CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin bsc1074043 - CVE-2017-7847: Local path string can be leaked from RSS feed bsc1074044 - CVE-2017-7848: RSS Feed vulnerable to new line...

1.9AI score0.02008EPSS
Exploits1References4
ALT Linux
ALT Linux
added 2017/12/25 12:0 a.m.28 views

Security fix for the ALT Linux 10 package thunderbird version 52.5.2-alt1

Dec. 25, 2017 Andrey Cherepanov 52.5.2-alt1 - New version 52.5.2 - Enigmail 1.9.9 - Fixes: + CVE-2017-7846 JavaScript Execution via RSS in mailbox:// origin + CVE-2017-7847 Local path string can be leaked from RSS feed + CVE-2017-7848 RSS Feed vulnerable to new line Injection + CVE-2017-7829...

6.8CVSS7.1AI score0.02008EPSS
Exploits1
Rows per page
Query Builder