Количество 10
Количество 10
CVE-2021-23991
If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1.
CVE-2021-23991
If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1.
CVE-2021-23991
If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1.
CVE-2021-23991
If a Thunderbird user has previously imported Alice's OpenPGP key, and ...
GHSA-x5j6-p8w8-5r65
If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1.
BDU:2021-02077
Уязвимость почтового клиента Thunderbird, связанная c некорректной проверкой криптографической подписи OpenPGP, позволяющая нарушителю получить доступ к защищаемой информации
ELSA-2021-1193
ELSA-2021-1193: thunderbird security update (MODERATE)
ELSA-2021-1192
ELSA-2021-1192: thunderbird security update (MODERATE)
SUSE-SU-2021:1167-1
Security update for MozillaThunderbird
openSUSE-SU-2021:0580-1
Security update for MozillaThunderbird
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-23991 If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1. | CVSS3: 6.8 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-23991 If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1. | CVSS3: 6.8 | 0% Низкий | почти 5 лет назад |
 | CVE-2021-23991 If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1. | CVSS3: 6.8 | 0% Низкий | больше 4 лет назад |
| CVE-2021-23991 If a Thunderbird user has previously imported Alice's OpenPGP key, and ... | CVSS3: 6.8 | 0% Низкий | больше 4 лет назад |
| GHSA-x5j6-p8w8-5r65 If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice. This vulnerability affects Thunderbird < 78.9.1. | 0% Низкий | больше 3 лет назад | |
 | BDU:2021-02077 Уязвимость почтового клиента Thunderbird, связанная c некорректной проверкой криптографической подписи OpenPGP, позволяющая нарушителю получить доступ к защищаемой информации | CVSS3: 4.2 | 0% Низкий | около 5 лет назад |
| ELSA-2021-1193 ELSA-2021-1193: thunderbird security update (MODERATE) | почти 5 лет назад | ||
| ELSA-2021-1192 ELSA-2021-1192: thunderbird security update (MODERATE) | почти 5 лет назад | ||
 | SUSE-SU-2021:1167-1 Security update for MozillaThunderbird | почти 5 лет назад | ||
| openSUSE-SU-2021:0580-1 Security update for MozillaThunderbird | почти 5 лет назад |
Уязвимостей на страницу