Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2021-23992 | First vendor Publication | 2021-06-24 |
Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | |||
---|---|---|---|
Overall CVSS Score | 4.3 | ||
Base Score | 4.3 | Environmental Score | 4.3 |
impact SubScore | 1.4 | Temporal Score | 4.3 |
Exploitabality Sub Score | 2.8 | ||
Attack Vector | Network | Attack Complexity | Low |
Privileges Required | None | User Interaction | Required |
Scope | Unchanged | Confidentiality Impact | None |
Integrity Impact | Low | Availability Impact | None |
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N) | |||
---|---|---|---|
Cvss Base Score | 4.3 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Thunderbird did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted version of an OpenPGP key, by either replacing the original user ID, or by adding another user ID. If Thunderbird imports and accepts the crafted key, the Thunderbird user may falsely conclude that the false user ID belongs to the correspondent. This vulnerability affects Thunderbird < 78.9.1. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-347 | Improper Verification of Cryptographic Signature |
CPE : Common Platform Enumeration
Sources (Detail)
Source | Url |
---|
Alert History
Date | Informations |
---|---|
2025-02-07 02:27:54 |
|
2024-11-28 13:53:31 |
|
2024-08-02 13:22:52 |
|
2024-08-02 01:24:48 |
|
2024-02-02 02:23:12 |
|
2024-02-01 12:23:09 |
|
2023-09-05 13:17:31 |
|
2023-09-05 01:22:42 |
|
2023-09-02 13:16:10 |
|
2023-09-02 01:23:02 |
|
2023-08-12 13:22:10 |
|
2023-08-12 01:22:15 |
|
2023-08-11 13:14:35 |
|
2023-08-11 01:22:57 |
|
2023-08-06 13:12:38 |
|
2023-08-06 01:21:59 |
|
2023-08-04 13:13:00 |
|
2023-08-04 01:22:20 |
|
2023-07-14 13:13:02 |
|
2023-07-14 01:22:09 |
|
2023-03-29 02:15:20 |
|
2023-03-28 12:22:24 |
|
2022-10-11 13:05:16 |
|
2022-10-11 01:21:56 |
|
2021-07-08 21:23:16 |
|
2021-06-24 21:23:09 |
|