CVE-2021-29957

Summary

If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird < 78.10.2.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbirdunspecified < 78.10.2affected

Weaknesses

  • Partial protection of inline OpenPGP message not indicated

ADP Enrichment

CVE Program Container

Additional References

References