Lucene search
K

40 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-48286

Malicious code in bioql PyPI...

8.1CVSS8.4AI score0.00528EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.16 views

CentOS 7 : thunderbird (RHSA-2022:9079)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:9079 advisory. - If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER...

9.8CVSS8.3AI score0.00921EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/01/14 12:0 a.m.29 views

Rocky Linux 8 : thunderbird (RLSA-2022:9074)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:9074 advisory. - A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This vulnerability affects Firefox This bug only affects...

9.8CVSS8.3AI score0.00921EPSS
Exploits0References8
NVD
NVD
added 2022/12/22 8:15 p.m.19 views

CVE-2022-45414

If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER attribute or an OBJECT tag with a DATA attribute, a network request to the referenced remote URL was performed, regardless of a configuration to block...

8.1CVSS0.00528EPSS
Exploits0References2
OSV
OSV
added 2022/12/22 8:15 p.m.11 views

CVE-2022-3033

If a Thunderbird user replied to a crafted HTML email containing a meta tag, with the meta tag having the http-equiv="refresh" attribute, and the content attribute specifying an URL, then Thunderbird started a network request to that URL, regardless of the configuration to block remote content. I...

8.1CVSS8AI score
Exploits0References3
Prion
Prion
added 2022/12/22 8:15 p.m.27 views

Design/Logic Flaw

If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER attribute or an OBJECT tag with a DATA attribute, a network request to the referenced remote URL was performed, regardless of a configuration to block...

5.8CVSS7.8AI score0.00768EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/12/22 12:0 a.m.148 views

CVE-2022-3033

CVE-2022-3033 affects Thunderbird when replying to crafted HTML emails containing a meta tag with http-equiv="refresh" and a content URL. This can trigger a network request and, with other HTML elements, allow JavaScript in the message compose context to read/modify the compose window (including ...

8.1CVSS7.6AI score0.00768EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.29 views

CVE-2022-45414

If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER attribute or an OBJECT tag with a DATA attribute, a network request to the referenced remote URL was performed, regardless of a configuration to block...

8.3AI score0.00528EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.13 views

CVE-2022-3033

If a Thunderbird user replied to a crafted HTML email containing a meta tag, with the meta tag having the http-equiv="refresh" attribute, and the content attribute specifying an URL, then Thunderbird started a network request to that URL, regardless of the configuration to block remote content. I...

6.6AI score0.00768EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.20 views

CVE-2022-3033

If a Thunderbird user replied to a crafted HTML email containing a meta tag, with the meta tag having the http-equiv="refresh" attribute, and the content attribute specifying an URL, then Thunderbird started a network request to that URL, regardless of the configuration to block remote content. I...

7.9AI score0.00768EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/12/15 4:30 p.m.5 views

Mozilla: Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remote content

The Mozilla Foundation Security Advisory describes this flaw as: If a Thunderbird user quoted from an HTML email and the email contained either a video tag with the poster attribute or an object tag with a data attribute, a network request to the referenced remote URL was performed regardless of ...

8.1CVSS7.5AI score0.00768EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/12/01 9:26 a.m.40 views

CVE-2022-45414

The Mozilla Foundation Security Advisory describes this flaw as: If a Thunderbird user quoted from an HTML email and the email contained either a video tag with the poster attribute or an object tag with a data attribute, a network request to the referenced remote URL was performed regardless of ...

8.1CVSS1.7AI score0.00768EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/12/01 12:0 a.m.49 views

Mozilla Thunderbird < 102.5.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 102.5.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2022-50 advisory. - If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained...

8.1CVSS8.1AI score0.00768EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/12/01 12:0 a.m.31 views

Mozilla Thunderbird < 102.5.1

The version of Thunderbird installed on the remote Windows host is prior to 102.5.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2022-50 advisory. - If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a...

8.1CVSS8.1AI score0.00768EPSS
Exploits0References2
Mozilla
Mozilla
added 2022/11/30 12:0 a.m.127 views

Security Vulnerabilities fixed in Thunderbird 102.5.1 — Mozilla

If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER attribute or an OBJECT tag with a DATA attribute, a network request to the referenced remote URL was performed, regardless of a configuration to block...

8.1CVSS8.4AI score0.00768EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/11/16 12:0 a.m.33 views

AlmaLinux 9 : thunderbird (ALSA-2022:6717)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6717 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

8.8CVSS7.4AI score0.01342EPSS
Exploits0References11
ALT Linux
ALT Linux
added 2022/10/26 12:0 a.m.30 views

Security fix for the ALT Linux 10 package thunderbird version 102.2.1-alt1

102.2.1-alt1 built Oct. 26, 2022 Andrey Cherepanov in task 307737 Sept. 6, 2022 Pavel Vasenkov - New version. - Security fixes: + CVE-2022-3033 Leaking of sensitive information when composing a response to an HTML email with a META refresh tag + CVE-2022-3032 Remote content specified in an HTML...

6.3AI score0.0094EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-5663-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.0094EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/09/26 4:34 p.m.47 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/09/26 3:57 p.m.54 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS6.6AI score0.01342EPSS
Exploits0References11
Rows per page
Query Builder