Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-11159

Опубликовано: 13 нояб. 2024
Источник: redhat
CVSS3: 4.3

Описание

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird < 128.4.3 and Thunderbird < 132.0.1.

The Mozilla Foundation Security Advisory describes this flaw as: Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext.

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6thunderbirdOut of support scope
Red Hat Enterprise Linux 7thunderbirdOut of support scope
Red Hat Enterprise Linux 9thunderbird-flatpak-containerAffected
Red Hat Enterprise Linux 8thunderbirdFixedRHSA-2024:1059102.12.2024
Red Hat Enterprise Linux 8.2 Advanced Update SupportthunderbirdFixedRHSA-2024:1070402.12.2024
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update SupportthunderbirdFixedRHSA-2024:1073303.12.2024
Red Hat Enterprise Linux 8.4 Telecommunications Update ServicethunderbirdFixedRHSA-2024:1073303.12.2024
Red Hat Enterprise Linux 8.4 Update Services for SAP SolutionsthunderbirdFixedRHSA-2024:1073303.12.2024
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update SupportthunderbirdFixedRHSA-2024:1073403.12.2024
Red Hat Enterprise Linux 8.6 Telecommunications Update ServicethunderbirdFixedRHSA-2024:1073403.12.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=2325896thunderbird: Potential disclosure of plaintext in OpenPGP encrypted message

4.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-11159

CVSS3: 4.3
ubuntu
12 месяцев назад

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird < 128.4.3 and Thunderbird < 132.0.1.

nvd логотип

CVE-2024-11159

CVSS3: 4.3
nvd
12 месяцев назад

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird < 128.4.3 and Thunderbird < 132.0.1.

debian логотип

CVE-2024-11159

CVSS3: 4.3
debian
12 месяцев назад

Using remote content in OpenPGP encrypted messages can lead to the dis ...

github логотип

GHSA-jm4h-wwjv-4q5c

CVSS3: 4.3
github
12 месяцев назад

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird < 128.4.3 and Thunderbird < 132.0.1.

fstec логотип

BDU:2025-00116

CVSS3: 5.3
fstec
12 месяцев назад

Уязвимость реализации стандарта шифрования электронной почты OpenPGP почтового клиента Mozilla Thunderbird, позволяющая нарушителю раскрыть защищаемую информацию

4.3 Medium

CVSS3