RHSA-2022:1301
Advisory lineage Upstream: 9 Downstream: 0
Published: 16 Sept 2024, 07:48
Last modified:22 Nov 2025, 12:32
Vulnerability Summary
Overall Risk (default)
medium
35/100 CVSS Score
8.8 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Sept 2024, 07:48
Published
Vulnerability first disclosed
22 Nov 2025, 12:32
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: thunderbird security update
CVSS Metrics
- v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Systems
- redhat•thunderbird
< 0:91.8.0-1.el8_5
- redhat•thunderbird-debuginfo
< 0:91.8.0-1.el8_5
- redhat•thunderbird-debugsource
< 0:91.8.0-1.el8_5
References (45)
- https://access.redhat.com/errata/RHSA-2022:1301
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2072559
- https://bugzilla.redhat.com/show_bug.cgi?id=2072560
- https://bugzilla.redhat.com/show_bug.cgi?id=2072561
- https://bugzilla.redhat.com/show_bug.cgi?id=2072562
- https://bugzilla.redhat.com/show_bug.cgi?id=2072563
- https://bugzilla.redhat.com/show_bug.cgi?id=2072564
- https://bugzilla.redhat.com/show_bug.cgi?id=2072565
- https://bugzilla.redhat.com/show_bug.cgi?id=2072566
- https://bugzilla.redhat.com/show_bug.cgi?id=2072963
- https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_1301.json
- https://access.redhat.com/security/cve/CVE-2022-1097
- https://www.cve.org/CVERecord?id=CVE-2022-1097
- https://nvd.nist.gov/vuln/detail/CVE-2022-1097
- https://access.redhat.com/security/cve/CVE-2022-1196
- https://www.cve.org/CVERecord?id=CVE-2022-1196
- https://nvd.nist.gov/vuln/detail/CVE-2022-1196
- https://access.redhat.com/security/cve/CVE-2022-1197
- https://www.cve.org/CVERecord?id=CVE-2022-1197
- https://nvd.nist.gov/vuln/detail/CVE-2022-1197
- https://access.redhat.com/security/cve/CVE-2022-24713
- https://www.cve.org/CVERecord?id=CVE-2022-24713
- https://nvd.nist.gov/vuln/detail/CVE-2022-24713
- https://access.redhat.com/security/cve/CVE-2022-28281
- https://www.cve.org/CVERecord?id=CVE-2022-28281
- https://nvd.nist.gov/vuln/detail/CVE-2022-28281
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-14/#CVE-2022-28281
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-15/#CVE-2022-28281
- https://access.redhat.com/security/cve/CVE-2022-28282
- https://www.cve.org/CVERecord?id=CVE-2022-28282
- https://nvd.nist.gov/vuln/detail/CVE-2022-28282
- https://access.redhat.com/security/cve/CVE-2022-28285
- https://www.cve.org/CVERecord?id=CVE-2022-28285
- https://nvd.nist.gov/vuln/detail/CVE-2022-28285
- https://access.redhat.com/security/cve/CVE-2022-28286
- https://www.cve.org/CVERecord?id=CVE-2022-28286
- https://nvd.nist.gov/vuln/detail/CVE-2022-28286
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-14/#CVE-2022-28286
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-15/#CVE-2022-28286
- https://access.redhat.com/security/cve/CVE-2022-28289
- https://www.cve.org/CVERecord?id=CVE-2022-28289
- https://nvd.nist.gov/vuln/detail/CVE-2022-28289
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-14/#CVE-2022-28289
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-15/#CVE-2022-28289