Lucene search
K

28 matches found

OSV
OSV
added 2022/12/22 8:15 p.m.7 views

CVE-2022-3032

When receiving an HTML email that contained an iframe element, which used a srcdoc attribute to define the inner HTML document, remote objects specified in the nested document, for example images or videos, were not blocked. Rather, the network was accessed, the objects were loaded and displayed...

6.5CVSS8.3AI score
Exploits0References3
CVE
CVE
added 2022/12/22 12:0 a.m.144 views

CVE-2022-3032

Thunderbird has a vulnerability where receiving an HTML email containing an iframe with a srcdoc attribute does not block remote objects in the nested document; the network is accessed and items like images/videos are loaded and displayed. Affected versions are Thunderbird < 102.2.1 and Thunde...

6.5CVSS6.8AI score0.00663EPSS
Exploits0References3Affected Software1
Amazon
Amazon
added 2022/12/06 12:0 a.m.37 views

Important: thunderbird

Issue Overview: Integer overflow vulnerability in avtimecodemakestring in libavutil/timecode.c in FFmpeg version 4.3.2, allows local attackers to cause a denial of service DoS via crafted .mov file. CVE-2021-28429 When receiving an HTML email that contained an iframe element, which used a srcdoc...

8.8CVSS8.9AI score0.01659EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/16 12:0 a.m.33 views

AlmaLinux 9 : thunderbird (ALSA-2022:6717)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6717 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

8.8CVSS7.4AI score0.01342EPSS
Exploits0References11
ALT Linux
ALT Linux
added 2022/10/26 12:0 a.m.30 views

Security fix for the ALT Linux 10 package thunderbird version 102.2.1-alt1

102.2.1-alt1 built Oct. 26, 2022 Andrey Cherepanov in task 307737 Sept. 6, 2022 Pavel Vasenkov - New version. - Security fixes: + CVE-2022-3033 Leaking of sensitive information when composing a response to an HTML email with a META refresh tag + CVE-2022-3032 Remote content specified in an HTML...

6.3AI score0.0094EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-5663-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.0094EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/09/26 4:34 p.m.47 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/09/26 3:57 p.m.54 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/09/26 3:41 p.m.40 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/09/26 3:15 p.m.58 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/09/26 2:54 p.m.39 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
Rockylinux
Rockylinux
added 2022/09/26 1:56 p.m.35 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. This updat...

8.8CVSS8.3AI score0.01342EPSS
Exploits0
OSV
OSV
added 2022/09/26 12:0 a.m.26 views

ALSA-2022:6708 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla: Leaking of sensitive information when composing a response to an HTML email with a META refresh tag CVE-2022-3033 Mozilla: Bypassing FeaturePolicy...

8.8CVSS8.5AI score0.01342EPSS
Exploits0References22
OSV
OSV
added 2022/09/26 12:0 a.m.21 views

ALSA-2022:6717 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla: Leaking of sensitive information when composing a response to an HTML email with a META refresh tag CVE-2022-3033 Mozilla: Bypassing FeaturePolicy...

8.8CVSS8.5AI score0.01342EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.36 views

RHEL 7 : thunderbird (RHSA-2022:6710)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6710 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla:...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.27 views

RHEL 8 : thunderbird (RHSA-2022:6716)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6716 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla:...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References23
AlmaLinux
AlmaLinux
added 2022/09/26 12:0 a.m.33 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla: Leaking of sensitive information when composing a response to an HTML email with a META refresh tag CVE-2022-3033 Mozilla: Bypassing FeaturePolicy...

8.8CVSS8.4AI score0.01342EPSS
Exploits0References22
AlmaLinux
AlmaLinux
added 2022/09/26 12:0 a.m.50 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla: Leaking of sensitive information when composing a response to an HTML email with a META refresh tag CVE-2022-3033 Mozilla: Bypassing FeaturePolicy...

8.8CVSS8.4AI score0.01342EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.51 views

RHEL 9 : thunderbird (RHSA-2022:6717)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6717 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla:...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References23
OpenVAS
OpenVAS
added 2022/09/21 12:0 a.m.17 views

Mozilla Thunderbird Security Advisory (MFSA2022-39) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

8.1CVSS6.8AI score0.00768EPSS
Exploits0References1
Rows per page
Query Builder