EPSS
Percentile
61.8%
Crafted CSS in an RSS feed can leak and reveal local path strings, which may contain user name. This vulnerability affects Thunderbird < 52.5.2.
bugzilla.redhat.com/show_bug.cgi?id=1530190
www.mozilla.org/en-US/security/advisories/mfsa2017-30/#CVE-2017-7847