CVE-2022-29913

Summary

The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process. This vulnerability affects Thunderbird < 91.9.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbirdunspecified < 91.9affected

Weaknesses

  • Speech Synthesis feature not properly disabled

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References