8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.004 Low
EPSS
Percentile
72.2%
A vulnerability in the Mozilla Thunderbird email client is related to the fact that the browser’s full-screen notification could have been
delayed or suppressed, which could lead to data spoofing. Exploitation of the vulnerability could allow
an attacker acting remotely to direct a user to a vulnerable page and perform a spoofing
attack
A vulnerability in the Mozilla Thunderbird email client is related to the fact that a deprecated library (libusrsctp) contained a vulnerability that could potentially be exploited.
vulnerabilities that could potentially be exploited. Exploitation of the vulnerability could allow
an attacker acting remotely to cause exploitation of the vulnerable library and launch an attack on a
device
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
redos | 7.3 | x86_64 | thunderbird | <= 102.7.0-1 | UNKNOWN |