Lucene search
Redhat.comRH:CVE-2020-15646HistoryJul 16, 2020 - 7:08 p.m.
CVE-2020-15646
2020-07-1619:08:30
redhat.com
access.redhat.com
7
EPSS
0.002
Percentile
55.1%
If an attacker intercepts Thunderbird’s initial attempt to perform automatic account setup using the Microsoft Exchange autodiscovery mechanism, and the attacker sends a crafted response, then Thunderbird sends username and password over https to a server controlled by the attacker. This vulnerability affects Thunderbird < 68.10.0.
Related
nvd
nvd
CVE-2020-15646
2020-10-08 14:15:12
ubuntucve
ubuntucve
CVE-2020-15646
2020-10-08 00:00:00
cvelist
cvelist
CVE-2020-15646
2020-10-08 13:37:18
cve
cve
CVE-2020-15646
2020-10-08 14:15:12
prion
prion
Default credentials
2020-10-08 14:15:00
debiancve
debiancve
CVE-2020-15646
2020-10-08 14:15:12
veracode
veracode
Information Disclosure
2020-12-06 03:48:50
redhat
redhat
(RHSA-2020:2966) Important: thunderbird security update
2020-07-16 07:11:10
(RHSA-2020:3046) Important: thunderbird security update
2020-07-21 14:16:22
(RHSA-2020:2907) Important: thunderbird security update
2020-07-14 10:48:24
openvas
openvas
Mozilla Thunderbird Security Advisory (MFSA2020-26) - Windows
2023-01-10 00:00:00
Mozilla Thunderbird Security Advisory (MFSA2020-26) - Mac OS X
2023-01-10 00:00:00
Debian: Security Advisory (DSA-4718-1)
2020-07-07 00:00:00
nessus
nessus
RHEL 6 : thunderbird (RHSA-2020:2966)
2020-07-16 00:00:00
RHEL 8 : thunderbird (RHSA-2020:3038)
2020-07-28 00:00:00
RHEL 8 : thunderbird (RHSA-2020:3046)
2020-07-21 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 68.10.0 — Mozilla
2020-06-30 00:00:00
osv
osv
thunderbird - security update
2020-07-05 00:00:00
kaspersky
kaspersky
KLA11829 Multiple vulnerabilities in Mozilla Thunderbird
2020-06-30 00:00:00