1. Home
  2. Vulnerabilities
  3. CVE-2023-0616

CVE-2023-0616

CVSS v3.1 6.5 (Medium)
65% Progress
EPSS 0.10 % (44th)
0.10% Progress
Affected Products 1
Advisories 17
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

If a MIME email combines OpenPGP and OpenPGP MIME data in a certain way Thunderbird repeatedly attempts to process and display the message, which could cause Thunderbird's user interface to lock up and no longer respond to the user's actions. An attacker could send a crafted message with this structure to attempt a DoS attack. This vulnerability affects Thunderbird < 102.8.

Weaknesses
CWE-400
Uncontrolled Resource Consumption
CVE Status
PUBLISHED
CNA
Mozilla Corporation
Published Date
2023-06-02 17:15:10
(15 months ago)
Updated Date
2023-06-08 19:35:29
(15 months ago)

Affected Products

Mozilla

Configuration #1

    CPE23 From Up To
  Mozilla Thunderbird prior 102.8 version cpe:2.3:a:mozilla:thunderbird < 102.8