VDB
DEBIAN-CVE-2022-1520
DEBIAN-CVE-2022-1520
PUBLISHED
CVSS 4.300000190734863 MEDIUM
When viewing an email message A, which contains an attached message B, where B is encrypted or digitally signed or both, Thunderbird may show an incorrect encryption or signature status. After opening and viewing the attached message B, when returning to the display of message A, the message A might be shown with the security status of message B. This vulnerability affects Thunderbird < 91.9.
Risk Scores
CVSS 3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | thunderbird | 0, 0, 0 |
| Debian:11 | thunderbird | 78.13.0-1, 78.13.0-1, 78.13.0-1 |
| Debian:12 | thunderbird | 0, 0, 0 |
| Debian:14 | thunderbird | 0, 0, 0 |
Timeline
- Dec 22, 2022 CVE Published
- Apr 28, 2026 CVE Updated