Severity Rating: HIGH
Software Affected
Mozilla Firefox Thunderbird versions prior to 102.5.1
Overview
A
vulnerability has been reported in Mozilla Thunderbird which could
allow a remote attacker to perform arbitrary code execution on the
targeted system.
Description
This
vulnerability exists in Mozilla Thunderbird due to quoting from an HTML
email with certain tags. A remote attacker could exploit this
vulnerability by persuading a victim to visit a specially crafted web
request.
Successful exploitation of this
vulnerability could allow a remote attacker to perform arbitrary code
execution on the targeted system.
Solution
Upgrade to Mozilla Firefox Thunderbird versions 102.5.1
Vendor Information
Mozilla Thunderbird
References
Mozilla Thunderbird
CVE Name
CVE-2022-45414
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.