Thunderbird users who use the Matrix chat protocol were vulnerable to an impersonation attack. Albrecht and Dan Jones from the Information Security Group at Royal Holloway University London, Benjamin Dowling from Security of Advanced Systems Group, University of Sheffield and Sofía Celi from Brave Software Impact high Description #CVE-2022-39250: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack Reporter Martin R. A malicious server administrator could fake encrypted messages to look as if they were sent from another user on that server.
#CVE-2022-39249: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators Reporter Martin R. Mozilla Foundation Security Advisory 2022-43 Security Vulnerabilities fixed in Thunderbird 102.3.1 Announced SeptemImpact high Products Thunderbird Fixed in
0 kommentar(er)
