Lucene search
Veracode Vulnerability DatabaseVERACODE:33228HistoryDec 10, 2021 - 7:35 a.m.
Remote Code Execution (RCE)
2021-12-1007:35:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
0.002 Low
EPSS
Percentile
57.7%
thunderbird is vulnerable to remote code execution. The vulnerability exists due to the lack of sanitization of the execution context which allows Javascript to be enabled in the composition area.
References
access.redhat.com/errata/RHSA-2021:5055
access.redhat.com/security/updates/classification/#important
bugzilla.mozilla.org/show_bug.cgi?id=1742579
bugzilla.redhat.com/show_bug.cgi?id=2030137
lists.debian.org/debian-lts-announce/2022/01/msg00001.html
security.gentoo.org/glsa/202208-14
www.debian.org/security/2022/dsa-5034
www.mozilla.org/security/advisories/mfsa2021-54/
Related
ubuntucve
ubuntucve
CVE-2021-43528
2021-12-08 00:00:00
prion
prion
Security feature bypass
2021-12-08 22:15:00
cve
cve
CVE-2021-43528
2021-12-08 22:15:09
alpinelinux
alpinelinux
CVE-2021-43528
2021-12-08 22:15:09
debiancve
debiancve
CVE-2021-43528
2021-12-08 22:15:09
cvelist
cvelist
CVE-2021-43528
2021-12-08 21:21:12
redhatcve
redhatcve
CVE-2021-43528
2021-12-08 04:56:35
nvd
nvd
CVE-2021-43528
2021-12-08 22:15:09
archlinux
archlinux
[ASA-202112-9] thunderbird: multiple issues
2021-12-11 00:00:00
nessus
nessus
Scientific Linux Security Update : thunderbird on SL7.x x86_64 (2021:5046)
2021-12-10 00:00:00
Mozilla Thunderbird < 91.4.0
2021-12-08 00:00:00
AlmaLinux 8 : thunderbird (ALSA-2021:5045)
2022-02-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 91.4.0-alt1
2021-12-21 00:00:00
openvas
openvas
Mozilla Thunderbird Security Advisories (MFSA2021-50, MFSA2021-54) - Windows
2021-12-12 00:00:00
Mageia: Security Advisory (MGASA-2021-0554)
2022-01-28 00:00:00
rocky
rocky
thunderbird security update
2021-12-09 12:14:59
oraclelinux
oraclelinux
thunderbird security update
2021-12-10 00:00:00
thunderbird security update
2021-12-10 00:00:00
almalinux
almalinux
Important: thunderbird security update
2021-12-09 12:14:59
redhat
redhat
(RHSA-2021:5046) Important: thunderbird security update
2021-12-09 12:15:00
(RHSA-2021:5048) Important: thunderbird security update
2021-12-09 12:17:30
(RHSA-2021:5047) Important: thunderbird security update
2021-12-09 12:17:29
mageia
mageia
Updated thunderbird packages fix security vulnerability
2021-12-11 01:19:07
osv
osv
Important: thunderbird security update
2021-12-09 12:14:59
Important: thunderbird security update
2021-12-09 12:14:59
thunderbird - security update
2022-01-02 00:00:00
kaspersky
kaspersky
KLA12376 Multiple vulnerabilities in Mozilla Thunderbird
2021-12-07 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 91.4.0 — Mozilla
2021-12-07 00:00:00
debian
debian
[SECURITY] [DSA 5034-1] thunderbird security update
2022-01-02 17:01:50
[SECURITY] [DLA 2874-1] thunderbird security update
2022-01-04 10:10:10
ubuntu
ubuntu
Thunderbird vulnerabilities
2022-01-21 00:00:00
Thunderbird vulnerabilities
2022-01-21 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2021-12-22 00:00:00
Security update for MozillaThunderbird (important)
2021-12-29 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-10 00:00:00