0.006 Low
EPSS
Percentile
79.3%
Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 68.1 and Thunderbird < 60.9.
bugzilla.redhat.com/show_bug.cgi?id=1752307
nvd.nist.gov/vuln/detail/CVE-2019-11739
www.cve.org/CVERecord?id=CVE-2019-11739
www.mozilla.org/en-US/security/advisories/mfsa2019-29/#CVE-2019-11739