Количество 12
Количество 12
CVE-2025-3523
When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.
CVE-2025-3523
When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.
CVE-2025-3523
When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.
CVE-2025-3523
When an email contains multiple attachments with external links via th ...
GHSA-4h7q-pj8m-5675
When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.
BDU:2025-07589
Уязвимость почтового клиента Thunderbird, связанная с ошибками представления информации пользовательским интерфейсом, позволяющая нарушителю проводить спуфинг атаки
SUSE-SU-2025:1366-1
Security update for MozillaThunderbird
ROS-20250515-08
Множественные уязвимости thunderbird
ELSA-2025-7435
ELSA-2025-7435: thunderbird security update (IMPORTANT)
ELSA-2025-4649
ELSA-2025-4649: thunderbird security update (IMPORTANT)
ELSA-2025-4229
ELSA-2025-4229: thunderbird security update (IMPORTANT)
ELSA-2025-7507
ELSA-2025-7507: thunderbird security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-3523 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2. | CVSS3: 6.4 | 0% Низкий | 4 месяца назад |
 | CVE-2025-3523 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2. | CVSS3: 6.4 | 0% Низкий | 4 месяца назад |
 | CVE-2025-3523 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2. | CVSS3: 6.4 | 0% Низкий | 4 месяца назад |
| CVE-2025-3523 When an email contains multiple attachments with external links via th ... | CVSS3: 6.4 | 0% Низкий | 4 месяца назад |
| GHSA-4h7q-pj8m-5675 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2. | CVSS3: 6.4 | 0% Низкий | 4 месяца назад |
 | BDU:2025-07589 Уязвимость почтового клиента Thunderbird, связанная с ошибками представления информации пользовательским интерфейсом, позволяющая нарушителю проводить спуфинг атаки | CVSS3: 6.4 | 0% Низкий | 4 месяца назад |
 | SUSE-SU-2025:1366-1 Security update for MozillaThunderbird | 4 месяца назад | ||
 | ROS-20250515-08 Множественные уязвимости thunderbird | CVSS3: 6.4 | 3 месяца назад | |
| ELSA-2025-7435 ELSA-2025-7435: thunderbird security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-4649 ELSA-2025-4649: thunderbird security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-4229 ELSA-2025-4229: thunderbird security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-7507 ELSA-2025-7507: thunderbird security update (IMPORTANT) | около 1 месяца назад |
Уязвимостей на страницу