Lucene search
MozillaCVE-2021-4127HistoryDec 22, 2022 - 8:15 p.m.
CVE-2021-4127
2022-12-2220:15:11
mozilla
web.nvd.nist.gov
67
cve-2021-4127
angle
thunderbird
firefox esr
vulnerability
exploitation
graphics library
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.2
Confidence
High
EPSS
0.003
Percentile
65.9%
An out of date graphics library (Angle) likely contained vulnerabilities that could potentially be exploited. This vulnerability affects Thunderbird < 78.9 and Firefox ESR < 78.9.
Affected configurations
Node
mozillafirefox_esrRange<78.9.0
ORmozillathunderbirdRange<78.9.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mozilla | firefox_esr | * | cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:* |
| mozilla | thunderbird | * | cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Mozilla",
"product": "Thunderbird",
"versions": [
{
"version": "unspecified",
"lessThan": "78.9",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Firefox ESR",
"versions": [
{
"version": "unspecified",
"lessThan": "78.9",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
Remote Code Execution (RCE)
2023-03-12 17:48:24
redhatcve
redhatcve
CVE-2021-4127
2023-01-02 14:35:34
nvd
nvd
CVE-2021-4127
2022-12-22 20:15:11
cvelist
cvelist
CVE-2021-4127
2022-12-22 00:00:00
prion
prion
Code injection
2022-12-22 20:15:00
ubuntucve
ubuntucve
CVE-2021-4127
2022-12-22 00:00:00
debiancve
debiancve
CVE-2021-4127
2022-12-22 20:15:11
nessus
nessus
RHEL 7 : firefox (RHSA-2021:0992)
2021-03-25 00:00:00
RHEL 8 : thunderbird (RHSA-2021:0993)
2021-03-25 00:00:00
RHEL 8 : thunderbird (RHSA-2021:0995)
2021-03-25 00:00:00
centos
centos
firefox security update
2021-03-26 18:11:51
thunderbird security update
2021-03-26 18:12:50
mageia
mageia
Updated firefox packages fix security vulnerabilities
2021-03-30 23:08:49
Updated thunderbird packages fix security vulnerabilities
2021-03-30 23:08:49
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 78.9 — Mozilla
2021-03-23 00:00:00
Security Vulnerabilities fixed in Firefox ESR 78.9 — Mozilla
2021-03-23 00:00:00
redhat
redhat
(RHSA-2021:0990) Important: firefox security update
2021-03-25 11:30:19
(RHSA-2021:0992) Important: firefox security update
2021-03-25 11:31:03
(RHSA-2021:0996) Important: thunderbird security update
2021-03-25 11:32:49
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0163)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2021-0164)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-4874-1)
2021-03-25 00:00:00
kaspersky
kaspersky
KLA12129 Multiple vulnerabilities in Mozilla Thunderbird
2021-03-23 00:00:00
KLA12128 Multiple vulnerabilities in Mozilla Firefox ESR
2021-03-23 00:00:00
osv
osv
firefox-esr - security update
2021-03-24 00:00:00
thunderbird - security update
2021-03-25 00:00:00
amazon
amazon
Important: thunderbird
2023-02-17 00:11:00
Important: thunderbird
2023-02-17 00:11:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.2
Confidence
High
EPSS
0.003
Percentile
65.9%
Related for CVE-2021-4127