Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-29913

Опубликовано: 03 мая 2022
Источник: redhat
CVSS3: 6.1
EPSS Низкий

Описание

The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process. This vulnerability affects Thunderbird < 91.9.

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this issue of the parent process not properly checking whether the Speech Synthesis feature is enabled when receiving instructions from a child process.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6thunderbirdOut of support scope
Red Hat Enterprise Linux 7thunderbirdFixedRHSA-2022:172505.05.2022
Red Hat Enterprise Linux 8thunderbirdFixedRHSA-2022:173005.05.2022
Red Hat Enterprise Linux 8.1 Update Services for SAP SolutionsthunderbirdFixedRHSA-2022:172705.05.2022
Red Hat Enterprise Linux 8.2 Extended Update SupportthunderbirdFixedRHSA-2022:172405.05.2022
Red Hat Enterprise Linux 8.4 Extended Update SupportthunderbirdFixedRHSA-2022:172605.05.2022
Red Hat Enterprise Linux 9thunderbirdFixedRHSA-2022:458918.05.2022

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-1173
https://bugzilla.redhat.com/show_bug.cgi?id=2082038Mozilla: Speech Synthesis feature not properly disabled

EPSS

Процентиль: 27%
0.00089
Низкий

6.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-29913

CVSS3: 6.5
ubuntu
больше 2 лет назад

The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process. This vulnerability affects Thunderbird < 91.9.

nvd логотип

CVE-2022-29913

CVSS3: 6.5
nvd
больше 2 лет назад

The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process. This vulnerability affects Thunderbird < 91.9.

debian логотип

CVE-2022-29913

CVSS3: 6.5
debian
больше 2 лет назад

The parent process would not properly check whether the Speech Synthes ...

github логотип

GHSA-26j5-r8rm-66gf

CVSS3: 6.5
github
больше 2 лет назад

The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process. This vulnerability affects Thunderbird < 91.9.

fstec логотип

BDU:2022-02941

CVSS3: 6.1
fstec
около 3 лет назад

Уязвимость функции SpeechSynthesis почтового клиента Thunderbird, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 27%
0.00089
Низкий

6.1 Medium

CVSS3