exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 21

ELSA-2018-0061

больше 7 лет назад

ELSA-2018-0061: thunderbird security update (IMPORTANT)

EPSS: Низкий

CVE-2017-7846

около 7 лет назад

It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via "View -> Feed article -> Website" or in the standard format of "View -> Feed article -> default format". This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 8.8

EPSS: Низкий

CVE-2017-7846

больше 7 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2017-7846

около 7 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2017-7846

около 7 лет назад

It is possible to execute JavaScript in the parsed RSS feed when RSS f ...

CVSS3: 8.8

EPSS: Низкий

GHSA-2529-rwp4-75f6

около 3 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2017-7829

около 7 лет назад

It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7829

больше 12 лет назад

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7829

около 7 лет назад

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7829

около 7 лет назад

It is possible to spoof the sender's email address and display an arbi ...

CVSS3: 5.3

EPSS: Низкий

GHSA-hpvr-62fv-x7x4

около 3 лет назад

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7848

около 7 лет назад

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7848

больше 7 лет назад

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7848

около 7 лет назад

RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7848

около 7 лет назад

RSS fields can inject new lines into the created email structure, modi ...

CVSS3: 5.3

EPSS: Низкий

CVE-2017-7847

около 7 лет назад

Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-7847

больше 7 лет назад

Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 3.7

EPSS: Низкий

CVE-2017-7847

около 7 лет назад

Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 4.3

EPSS: Низкий

CVE-2017-7847

около 7 лет назад

Crafted CSS in an RSS feed can leak and reveal local path strings, whi ...

CVSS3: 4.3

EPSS: Низкий

GHSA-jmgx-hhrr-ppmv

около 3 лет назад

Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
ELSA-2018-0061 ELSA-2018-0061: thunderbird security update (IMPORTANT)			больше 7 лет назад
CVE-2017-7846 It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via "View -> Feed article -> Website" or in the standard format of "View -> Feed article -> default format". This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 8.8	1% Низкий	около 7 лет назад
CVE-2017-7846 It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via "View -> Feed article -> Website" or in the standard format of "View -> Feed article -> default format". This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 8.8	1% Низкий	больше 7 лет назад
CVE-2017-7846 It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via "View -> Feed article -> Website" or in the standard format of "View -> Feed article -> default format". This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 8.8	1% Низкий	около 7 лет назад
CVE-2017-7846 It is possible to execute JavaScript in the parsed RSS feed when RSS f ...	CVSS3: 8.8	1% Низкий	около 7 лет назад
GHSA-2529-rwp4-75f6 It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via "View -> Feed article -> Website" or in the standard format of "View -> Feed article -> default format". This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 8.8	1% Низкий	около 3 лет назад
CVE-2017-7829 It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	около 7 лет назад
CVE-2017-7829 It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	больше 12 лет назад
CVE-2017-7829 It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	около 7 лет назад
CVE-2017-7829 It is possible to spoof the sender's email address and display an arbi ...	CVSS3: 5.3	2% Низкий	около 7 лет назад
GHSA-hpvr-62fv-x7x4 It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	около 3 лет назад
CVE-2017-7848 RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	около 7 лет назад
CVE-2017-7848 RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	больше 7 лет назад
CVE-2017-7848 RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 5.3	2% Низкий	около 7 лет назад
CVE-2017-7848 RSS fields can inject new lines into the created email structure, modi ...	CVSS3: 5.3	2% Низкий	около 7 лет назад
CVE-2017-7847 Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 4.3	1% Низкий	около 7 лет назад
CVE-2017-7847 Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 3.7	1% Низкий	больше 7 лет назад
CVE-2017-7847 Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 4.3	1% Низкий	около 7 лет назад
CVE-2017-7847 Crafted CSS in an RSS feed can leak and reveal local path strings, whi ...	CVSS3: 4.3	1% Низкий	около 7 лет назад
GHSA-jmgx-hhrr-ppmv Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.	CVSS3: 4.3	1% Низкий	около 3 лет назад

Уязвимостей на страницу