Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-0890

Опубликовано: 13 янв. 2026
Источник: redhat
CVSS3: 3.4
EPSS Низкий

Описание

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Spoofing issue in the DOM: Copy & Paste and Drag & Drop component

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10rhel10/firefox-flatpakAffected
Red Hat Enterprise Linux 10rhel10/thunderbird-flatpakAffected
Red Hat Enterprise Linux 6firefoxOut of support scope
Red Hat Enterprise Linux 6thunderbirdOut of support scope
Red Hat Enterprise Linux 7thunderbirdOut of support scope
Red Hat Enterprise Linux 10firefoxFixedRHSA-2026:227109.02.2026
Red Hat Enterprise Linux 10thunderbirdFixedRHSA-2026:228609.02.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportfirefoxFixedRHSA-2026:227109.02.2026
Red Hat Enterprise Linux 10.0 Extended Update SupportthunderbirdFixedRHSA-2026:228609.02.2026
Red Hat Enterprise Linux 7 Extended Lifecycle SupportfirefoxFixedRHSA-2026:223109.02.2026

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
https://bugzilla.redhat.com/show_bug.cgi?id=2428971firefox: thunderbird: Spoofing issue in the DOM: Copy & Paste and Drag & Drop component

EPSS

Процентиль: 4%
0.00017
Низкий

3.4 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2026-0890

CVSS3: 5.4
ubuntu
3 месяца назад

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

nvd логотип

CVE-2026-0890

CVSS3: 5.4
nvd
3 месяца назад

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firefox < 147, Firefox ESR < 140.7, Thunderbird < 147, and Thunderbird < 140.7.

debian логотип

CVE-2026-0890

CVSS3: 5.4
debian
3 месяца назад

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. Thi ...

github логотип

GHSA-484x-228c-ffm5

CVSS3: 6.5
github
3 месяца назад

Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firefox < 147 and Firefox ESR < 140.7.

suse-cvrf логотип

openSUSE-SU-2026:20041-1

suse-cvrf
2 месяца назад

Security update for MozillaFirefox

EPSS

Процентиль: 4%
0.00017
Низкий

3.4 Low

CVSS3