Security Advisory

CVE-2020-15685

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-22 00:00:00

Last updated 2025-04-16 14:40:26

Assigner mozilla

State PUBLISHED

Description

During the plaintext phase of the STARTTLS connection setup, protocol commands could have been injected and evaluated within the encrypted session. This vulnerability affects Thunderbird < 78.7.

← Browse all CVEs View on cve.org ↗