Published: 02/03/2020 Updated: 01/01/2022

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

It exists that Message ID calculation was based on uninitialized data. An attacker could potentially exploit this to obtain sensitive information. (CVE-2020-6792)

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla thunderbird
canonical ubuntu linux 16.04
canonical ubuntu linux 18.04
canonical ubuntu linux 19.10

Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code or denial of service For the oldstable distribution (stretch), these problems have been fixed in version 1:6850-1~deb9u1 For the stable distribution (buster), these problems have been fixed in version 1:6850-1~deb10u1 We recommend that ...

Synopsis Important: thunderbird security update Type/Severity Security Advisory: Important Topic An update for thunderbird is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vul ...

Synopsis Important: thunderbird security update Type/Severity Security Advisory: Important Topic An update for thunderbird is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...

Synopsis Important: thunderbird security update Type/Severity Security Advisory: Important Topic An update for thunderbird is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...

Synopsis Important: thunderbird security update Type/Severity Security Advisory: Important Topic An update for thunderbird is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...

Several security issues were fixed in Thunderbird ...

When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents This vulnerability affects Thunderbird < 685 (CVE-2020-6792) When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location This vulnerability affects Thunderbird < 68 ...

Mozilla Foundation Security Advisory 2020-07 Security Vulnerabilities fixed in Thunderbird 685 Announced February 11, 2020 Impact moderate Products Thunderbird Fixed in Thunderbird 685 ...

An information disclosure issue has bee found in Thunderbird before 685 When deriving an Message ID identifier for an email message, uninitialized memory was used in addition to the message contents ...

CWE-908 CWE-909 https://bugzilla.mozilla.org/show_bug.cgi?id=1609607 https://www.mozilla.org/security/advisories/mfsa2020-07/https://security.gentoo.org/glsa/202003-10 https://usn.ubuntu.com/4328-1/https://usn.ubuntu.com/4335-1/https://nvd.nist.gov https://www.debian.org/security/2020/dsa-4625 https://usn.ubuntu.com/4328-1/

Get Started

CVE-2020-6792

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect