Lucene search
MozillaCVELIST:CVE-2020-15646HistoryOct 08, 2020 - 1:37 p.m.
CVE-2020-15646
2020-10-0813:37:18
mozilla
www.cve.org
5
If an attacker intercepts Thunderbird’s initial attempt to perform automatic account setup using the Microsoft Exchange autodiscovery mechanism, and the attacker sends a crafted response, then Thunderbird sends username and password over https to a server controlled by the attacker. This vulnerability affects Thunderbird < 68.10.0.
CNA Affected
[
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "68.10.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2020-15646
2020-10-08 14:15:12
ubuntucve
ubuntucve
CVE-2020-15646
2020-10-08 00:00:00
redhatcve
redhatcve
CVE-2020-15646
2020-07-16 19:08:30
cve
cve
CVE-2020-15646
2020-10-08 14:15:12
prion
prion
Default credentials
2020-10-08 14:15:00
debiancve
debiancve
CVE-2020-15646
2020-10-08 14:15:12
veracode
veracode
Information Disclosure
2020-12-06 03:48:50
redhat
redhat
(RHSA-2020:2966) Important: thunderbird security update
2020-07-16 07:11:10
(RHSA-2020:3046) Important: thunderbird security update
2020-07-21 14:16:22
(RHSA-2020:2907) Important: thunderbird security update
2020-07-14 10:48:24
openvas
openvas
Mozilla Thunderbird Security Advisory (MFSA2020-26) - Windows
2023-01-10 00:00:00
Mozilla Thunderbird Security Advisory (MFSA2020-26) - Mac OS X
2023-01-10 00:00:00
Debian: Security Advisory (DSA-4718-1)
2020-07-07 00:00:00
nessus
nessus
RHEL 6 : thunderbird (RHSA-2020:2966)
2020-07-16 00:00:00
RHEL 8 : thunderbird (RHSA-2020:3038)
2020-07-28 00:00:00
RHEL 8 : thunderbird (RHSA-2020:3046)
2020-07-21 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 68.10.0 — Mozilla
2020-06-30 00:00:00
osv
osv
thunderbird - security update
2020-07-05 00:00:00
kaspersky
kaspersky
KLA11829 Multiple vulnerabilities in Mozilla Thunderbird
2020-06-30 00:00:00