Количество 11
Количество 11
CVE-2021-38502
Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2.
CVE-2021-38502
Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2.
CVE-2021-38502
Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2.
CVE-2021-38502
Thunderbird ignored the configuration to require STARTTLS security for ...
GHSA-wf24-4m95-7wjm
Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2.
RLSA-2021:3838
Important: thunderbird security update
ELSA-2021-3841
ELSA-2021-3841: thunderbird security update (IMPORTANT)
ELSA-2021-3838
ELSA-2021-3838: thunderbird security update (IMPORTANT)
openSUSE-SU-2021:4150-1
Security update for MozillaThunderbird
openSUSE-SU-2021:1635-1
Security update for MozillaThunderbird
SUSE-SU-2021:4150-1
Security update for MozillaThunderbird
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-38502 Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2. | CVSS3: 5.9 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-38502 Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2. | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-38502 Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2. | CVSS3: 5.9 | 0% Низкий | больше 4 лет назад |
| CVE-2021-38502 Thunderbird ignored the configuration to require STARTTLS security for ... | CVSS3: 5.9 | 0% Низкий | больше 4 лет назад |
| GHSA-wf24-4m95-7wjm Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected authentication method was configured, the MITM could obtain the authentication credentials, too. This vulnerability affects Thunderbird < 91.2. | CVSS3: 5.9 | 0% Низкий | больше 3 лет назад |
 | RLSA-2021:3838 Important: thunderbird security update | больше 4 лет назад | ||
| ELSA-2021-3841 ELSA-2021-3841: thunderbird security update (IMPORTANT) | больше 4 лет назад | ||
| ELSA-2021-3838 ELSA-2021-3838: thunderbird security update (IMPORTANT) | больше 4 лет назад | ||
 | openSUSE-SU-2021:4150-1 Security update for MozillaThunderbird | около 4 лет назад | ||
| openSUSE-SU-2021:1635-1 Security update for MozillaThunderbird | около 4 лет назад | ||
| SUSE-SU-2021:4150-1 Security update for MozillaThunderbird | около 4 лет назад |
Уязвимостей на страницу