Unrated severityNVD Advisory· Published Jun 2, 2023· Updated Jan 10, 2025
CVE-2023-0430
CVE-2023-0430
Description
Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. This vulnerability affects Thunderbird < 102.7.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7< 102.7.1+ 1 more
- (no CPE)range: < 102.7.1
- (no CPE)range: unspecified
- osv-coords5 versionspkg:rpm/almalinux/thunderbirdpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweedpkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP4
< 102.7.1-2.el8_7.alma+ 4 more
- (no CPE)range: < 102.7.1-2.el8_7.alma
- (no CPE)range: < 102.7.1-150200.8.102.1
- (no CPE)range: < 102.7.1-1.1
- (no CPE)range: < 102.7.1-150200.8.102.1
- (no CPE)range: < 102.7.1-150200.8.102.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.