---

CVE-2020-15685 - log back

CVE-2020-15685 edited at 28 Jan 2021 09:30:28
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Insufficient validation
Description	+ A security issue was found in Thunderbird before version 78.7. During the plaintext phase of the STARTTLS connection setup, protocol commands could have been injected and evaluated within the encrypted session.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2020-15685 + https://bugzilla.mozilla.org/show_bug.cgi?id=1622640

CVE-2020-15685 created at 28 Jan 2021 09:26:38
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes