Home / Early Warning / Vulnerabilidades / CVE-2020-12397

CVE-2020-12397

Type: 
Unavailable / Other
Severity: 
Medium
Publication date: 
05/22/2020
Last modified: 
06/02/2020
Description
By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This vulnerability affects Thunderbird
Impact
Access Vector: Through network
Access Complexity: Media
Authentication: Not required to exploit
Impact Type: Partially affects on system integrity + No impact on system confidentiality + No impact on system availability
Vulnerable software and versions
  • cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
To consult the complete list of products and versions see this page
References to Advisories, Solutions, and Tools
Explanation of fields