vulnerability
MFSA2021-12 Thunderbird: Security Vulnerabilities fixed in Thunderbird 78.9 (CVE-2021-23984)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Mar 23, 2021 | Mar 24, 2021 | Jun 28, 2021 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Mar 23, 2021
Added
Mar 24, 2021
Modified
Jun 28, 2021
Description
A malicious extension could have opened a popup window lacking an address bar. The title of the popup lacking an address bar should not be fully controllable, but in this situation was. This could have been used to spoof a website and attempt to trick the user into providing credentials. This vulnerability affects Firefox ESR
Solution
mozilla-thunderbird-upgrade-78_9

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.