exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

CVE-2025-3523

2 месяца назад

When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.

CVSS3: 6.4

EPSS: Низкий

CVE-2025-3523

2 месяца назад

CVSS3: 6.4

EPSS: Низкий

CVE-2025-3523

2 месяца назад

CVSS3: 6.4

EPSS: Низкий

CVE-2025-3523

2 месяца назад

When an email contains multiple attachments with external links via th ...

CVSS3: 6.4

EPSS: Низкий

GHSA-4h7q-pj8m-5675

2 месяца назад

CVSS3: 6.4

EPSS: Низкий

SUSE-SU-2025:1366-1

около 2 месяцев назад

Security update for MozillaThunderbird

EPSS: Низкий

ROS-20250515-08

около 1 месяца назад

Множественные уязвимости thunderbird

CVSS3: 6.4

EPSS: Низкий

ELSA-2025-7435

29 дней назад

ELSA-2025-7435: thunderbird security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-4649

около 1 месяца назад

ELSA-2025-4649: thunderbird security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-4229

около 2 месяцев назад

ELSA-2025-4229: thunderbird security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-3523 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.	CVSS3: 6.4	0% Низкий	2 месяца назад
CVE-2025-3523 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.	CVSS3: 6.4	0% Низкий	2 месяца назад
CVE-2025-3523 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.	CVSS3: 6.4	0% Низкий	2 месяца назад
CVE-2025-3523 When an email contains multiple attachments with external links via th ...	CVSS3: 6.4	0% Низкий	2 месяца назад
GHSA-4h7q-pj8m-5675 When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the correct link is used on click, the misleading hover text could trick users into downloading content from untrusted sources. This vulnerability affects Thunderbird < 137.0.2 and Thunderbird < 128.9.2.	CVSS3: 6.4	0% Низкий	2 месяца назад
SUSE-SU-2025:1366-1 Security update for MozillaThunderbird			около 2 месяцев назад
ROS-20250515-08 Множественные уязвимости thunderbird	CVSS3: 6.4		около 1 месяца назад
ELSA-2025-7435 ELSA-2025-7435: thunderbird security update (IMPORTANT)			29 дней назад
ELSA-2025-4649 ELSA-2025-4649: thunderbird security update (IMPORTANT)			около 1 месяца назад
ELSA-2025-4229 ELSA-2025-4229: thunderbird security update (IMPORTANT)			около 2 месяцев назад

Уязвимостей на страницу