CVE-2021-29949 — Uncontrolled Search Path Element in Mozilla Thunderbird
Severity
7.8HIGHNVD
OSV7.4
EPSS
0.1%
top 80.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJun 24
Latest updateMay 24
Description
When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious library has been copied to a directory that is contained in the search path for executable libraries, then Thunderbird will load the incorrect library. This vulnerability affects Thunderbird < 78.9.1.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages6 packages
🔴Vulnerability Details
4GHSA▶
GHSA-mhf4-98x7-2cw4: When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn↗2022-05-24
OSV▶
CVE-2021-29949: When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn↗2021-06-24
📋Vendor Advisories
5Debian▶
CVE-2021-29949: thunderbird - When loading the shared library that provides the OTR protocol implementation, T...↗2021