Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA48708
HistoryMar 28, 2023 - 12:00 a.m.

KLA48708 DoS vulnerability in Mozilla Thunderbird

2023-03-2800:00:00
Kaspersky Lab
threats.kaspersky.com
16
mozilla thunderbird
dos
vulnerability
update
cve-2023-28427
mfsa2023-12
security bypass

8.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

8.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.1%

JSON

Denial of service vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to cause denial of service.

Original advisories

MFSA2023-12

Related products

Mozilla-Thunderbird

CVE list

CVE-2023-28427 critical

Solution

Update to the latest version

Download Thunderbird

Impacts

  • DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Affected Products

  • Mozilla Thunderbird earlier than 102.9.1

Related

nessus 29
mageia 1
nvd 1
alpinelinux 1
prion 1
openvas 7
mozilla 1
veracode 1
osv 8
cvelist 1
debiancve 1
slackware 1
cve 1
ubuntucve 1
redhatcve 1
github 1
freebsd 1
debian 2
oraclelinux 3
redhat 8
almalinux 2
rocky 2
centos 1
gentoo 1
nessus
nessus
Fedora 38 : thunderbird (2023-a9c17dff60)
2023-04-04 00:00:00
Fedora 36 : thunderbird (2023-0e1ae0d5f6)
2023-04-14 00:00:00
Mozilla Thunderbird < 102.9.1
2023-03-29 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerability
2023-04-11 22:02:20
nvd
nvd
CVE-2023-28427
2023-03-28 21:15:11
alpinelinux
alpinelinux
CVE-2023-28427
2023-03-28 21:15:11
prion
prion
Design/Logic Flaw
2023-03-28 21:15:00
openvas
openvas
Mozilla Thunderbird Security Advisory (MFSA2023-12) - Mac OS X
2023-03-31 00:00:00
Mageia: Security Advisory (MGASA-2023-0132)
2023-04-12 00:00:00
Slackware: Security Advisory (SSA:2023-088-01)
2023-03-30 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 102.9.1 — Mozilla
2023-03-28 00:00:00
veracode
veracode
Prototype Pollution
2023-04-04 09:55:51
osv
osv
CVE-2023-28427
2023-03-28 21:15:11
Prototype pollution in matrix-js-sdk (part 2)
2023-03-30 20:19:18
Important: thunderbird security update
2023-04-26 15:29:00
cvelist
cvelist
CVE-2023-28427 Prototype pollution in matrix-js-sdk
2023-03-28 20:32:22
debiancve
debiancve
CVE-2023-28427
2023-03-28 21:15:11
slackware
slackware
[slackware-security] mozilla-thunderbird
2023-03-29 21:19:17
cve
cve
CVE-2023-28427
2023-03-28 21:15:11
ubuntucve
ubuntucve
CVE-2023-28427
2023-03-28 00:00:00
redhatcve
redhatcve
CVE-2023-28427
2023-03-30 17:43:02
github
github
Prototype pollution in matrix-js-sdk (part 2)
2023-03-30 20:19:18
freebsd
freebsd
Matrix clients -- Prototype pollution in matrix-js-sdk
2023-03-28 00:00:00
debian
debian
[SECURITY] [DSA 5392-1] thunderbird security update
2023-04-22 16:10:59
[SECURITY] [DLA 3400-1] thunderbird security update
2023-04-24 08:55:14
oraclelinux
oraclelinux
thunderbird security update
2023-04-18 00:00:00
thunderbird security update
2023-04-18 00:00:00
thunderbird security update
2023-04-18 00:00:00
redhat
redhat
(RHSA-2023:1804) Important: thunderbird security update
2023-04-17 13:44:12
(RHSA-2023:1811) Important: thunderbird security update
2023-04-17 13:56:30
(RHSA-2023:1803) Important: thunderbird security update
2023-04-17 13:43:22
almalinux
almalinux
Important: thunderbird security update
2023-04-17 00:00:00
Important: thunderbird security update
2023-04-17 00:00:00
rocky
rocky
thunderbird security update
2023-04-26 15:28:13
thunderbird security update
2023-04-26 15:29:00
centos
centos
thunderbird security update
2023-04-24 14:49:28
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2023-05-30 00:00:00

8.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

8.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.1%

JSON
Related for KLA48708
nessus29mageia1nvd1alpinelinux1prion1openvas7mozilla1veracode1osv8cvelist1debiancve1slackware1cve1ubuntucve1redhatcve1github1freebsd1debian2oraclelinux3redhat8almalinux2rocky2centos1gentoo1