Security Advisory

CVE-2021-43528

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-08 21:21:12

Last updated 2024-08-04 03:55:29

Assigner mozilla

State PUBLISHED

Description

Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities. This vulnerability affects Thunderbird < 91.4.0.

← Browse all CVEs View on cve.org ↗