CVE-2018-12372

Publication date

2018-10-18 13:00:00

Family

mozilla

State

PUBLISHED

Description

Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9.