vulnerability
Rocky Linux: CVE-2024-5690: thunderbird (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:P/I:N/A:N) | Jun 11, 2024 | Jul 3, 2024 | Mar 31, 2026 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Jun 11, 2024
Added
Jul 3, 2024
Modified
Mar 31, 2026
Description
By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.
Solutions
rocky-upgrade-firefoxrocky-upgrade-firefox-debuginforocky-upgrade-firefox-debugsourcerocky-upgrade-firefox-x11rocky-upgrade-thunderbirdrocky-upgrade-thunderbird-debuginforocky-upgrade-thunderbird-debugsource
References
- CVE-2024-5690
- https://attackerkb.com/topics/CVE-2024-5690
- CWE-203
- EUVD-EUVD-2024-46862
- https://errata.rockylinux.org/RLSA-2024:3954
- https://errata.rockylinux.org/RLSA-2024:3955
- https://errata.rockylinux.org/RLSA-2024:4002
- https://errata.rockylinux.org/RLSA-2024:4036
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-46862
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.