CVE-2023-50762
CVE-2023-50762
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
19 dic 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
When processing a PGP/MIME payload that contains digitally signed text, the first paragraph of the text was never shown to the user. This is because the text was interpreted as a MIME message and the first paragraph was always treated as an email header section. A digitally signed text from a different context, such as a signed GIT commit, could be used to spoof an email message. This vulnerability affects Thunderbird < 115.6.
Productos afectados
Mozilla · Thunderbird¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →