CVE-2020-15685 log

Severity Medium
Remote Yes
Type Insufficient validation
A security issue was found in Thunderbird before version 78.7. During the plaintext phase of the STARTTLS connection setup, protocol commands could have been injected and evaluated within the encrypted session.
Group Package Affected Fixed Severity Status Ticket
AVG-1496 thunderbird 78.6.1-1 78.7.0-1 High Fixed
Date Advisory Group Package Severity Type
06 Feb 2021 ASA-202102-2 AVG-1496 thunderbird High multiple issues