{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2026-0818","title":"Title"},{"category":"description","text":"When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If the user had additionally allowed loading of the remote content referenced by the outer email message, and the email was crafted by the sender using a combination of CSS rules and fonts and animations, then it was possible to extract the secret contents of the email. This vulnerability affects Thunderbird < 147.0.1 and Thunderbird < 140.7.1.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2026-0818","url":"https://www.suse.com/security/cve/CVE-2026-0818"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1257397 for CVE-2026-0818","url":"https://bugzilla.suse.com/1257397"},{"category":"external","summary":"Advisory link for SUSE-SU-2026:0388-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2026-February/024060.html"}],"title":"SUSE CVE CVE-2026-0818","tracking":{"current_release_date":"2026-02-06T00:27:20Z","generator":{"date":"2026-01-30T00:26:59Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2026-0818","initial_release_date":"2026-01-30T00:26:59Z","revision_history":[{"date":"2026-01-30T00:26:59Z","number":"2","summary":"vulnerabilities added,references added,severity changed from  to moderate"},{"date":"2026-02-01T00:24:22Z","number":"3","summary":"scores added,updates released,description changed"},{"date":"2026-02-06T00:27:20Z","number":"4","summary":"more updates released,references added"}],"status":"interim","version":"4"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Desktop 15 SP7","product":{"name":"SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sled:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product":{"name":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:packagehub:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP7","product":{"name":"SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sles:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 15 SP7","product":{"name":"SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:15:sp7"}}},{"category":"product_name","name":"openSUSE Leap 15.6","product":{"name":"openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap:15.6"}}},{"category":"product_name","name":"openSUSE Tumbleweed","product":{"name":"openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed","product_identification_helper":{"cpe":"cpe:/o:opensuse:tumbleweed"}}},{"category":"product_version","name":"MozillaThunderbird-140.7.1-1.1","product":{"name":"MozillaThunderbird-140.7.1-1.1","product_id":"MozillaThunderbird-140.7.1-1.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:thunderbird:140.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaThunderbird@140.7.1-1.1?upstream=MozillaThunderbird-140.7.1-1.1.src.rpm"}}},{"category":"product_version","name":"MozillaThunderbird-140.7.1-150200.8.254.1","product":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1","product_id":"MozillaThunderbird-140.7.1-150200.8.254.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:thunderbird:140.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaThunderbird@140.7.1-150200.8.254.1?upstream=MozillaThunderbird-140.7.1-150200.8.254.1.src.rpm"}}},{"category":"product_version","name":"MozillaThunderbird-openpgp-librnp-140.7.1-1.1","product":{"name":"MozillaThunderbird-openpgp-librnp-140.7.1-1.1","product_id":"MozillaThunderbird-openpgp-librnp-140.7.1-1.1","product_identification_helper":{"purl":"pkg:rpm/suse/MozillaThunderbird-openpgp-librnp@140.7.1-1.1"}}},{"category":"product_version","name":"MozillaThunderbird-translations-common-140.7.1-1.1","product":{"name":"MozillaThunderbird-translations-common-140.7.1-1.1","product_id":"MozillaThunderbird-translations-common-140.7.1-1.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:thunderbird:140.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaThunderbird-translations-common@140.7.1-1.1?upstream=MozillaThunderbird-140.7.1-1.1.src.rpm"}}},{"category":"product_version","name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","product":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","product_id":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:thunderbird:140.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaThunderbird-translations-common@140.7.1-150200.8.254.1?upstream=MozillaThunderbird-140.7.1-150200.8.254.1.src.rpm"}}},{"category":"product_version","name":"MozillaThunderbird-translations-other-140.7.1-1.1","product":{"name":"MozillaThunderbird-translations-other-140.7.1-1.1","product_id":"MozillaThunderbird-translations-other-140.7.1-1.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:thunderbird:140.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaThunderbird-translations-other@140.7.1-1.1?upstream=MozillaThunderbird-140.7.1-1.1.src.rpm"}}},{"category":"product_version","name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","product":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","product_id":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","product_identification_helper":{"cpe":"cpe:2.3:a:mozilla:thunderbird:140.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/MozillaThunderbird-translations-other@140.7.1-150200.8.254.1?upstream=MozillaThunderbird-140.7.1-150200.8.254.1.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-150200.8.254.1 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:MozillaThunderbird-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-140.7.1-150200.8.254.1","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-140.7.1-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:MozillaThunderbird-140.7.1-1.1"},"product_reference":"MozillaThunderbird-140.7.1-1.1","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-openpgp-librnp-140.7.1-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:MozillaThunderbird-openpgp-librnp-140.7.1-1.1"},"product_reference":"MozillaThunderbird-openpgp-librnp-140.7.1-1.1","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-common-140.7.1-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:MozillaThunderbird-translations-common-140.7.1-1.1"},"product_reference":"MozillaThunderbird-translations-common-140.7.1-1.1","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"MozillaThunderbird-translations-other-140.7.1-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:MozillaThunderbird-translations-other-140.7.1-1.1"},"product_reference":"MozillaThunderbird-translations-other-140.7.1-1.1","relates_to_product_reference":"openSUSE Tumbleweed"}]},"vulnerabilities":[{"cve":"CVE-2026-0818","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2026-0818"}],"notes":[{"category":"general","text":"When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If the user had additionally allowed loading of the remote content referenced by the outer email message, and the email was crafted by the sender using a combination of CSS rules and fonts and animations, then it was possible to extract the secret contents of the email. This vulnerability affects Thunderbird < 147.0.1 and Thunderbird < 140.7.1.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","openSUSE Tumbleweed:MozillaThunderbird-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-openpgp-librnp-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-translations-common-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-translations-other-140.7.1-1.1"]},"references":[{"category":"external","summary":"CVE-2026-0818","url":"https://www.suse.com/security/cve/CVE-2026-0818"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1257397 for CVE-2026-0818","url":"https://bugzilla.suse.com/1257397"},{"category":"external","summary":"Advisory link for SUSE-SU-2026:0388-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2026-February/024060.html"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","openSUSE Tumbleweed:MozillaThunderbird-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-openpgp-librnp-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-translations-common-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-translations-other-140.7.1-1.1"]}],"scores":[{"cvss_v3":{"baseScore":3.1,"baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","version":"3.1"},"products":["SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Desktop 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-translations-common-140.7.1-150200.8.254.1","openSUSE Leap 15.6:MozillaThunderbird-translations-other-140.7.1-150200.8.254.1","openSUSE Tumbleweed:MozillaThunderbird-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-openpgp-librnp-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-translations-common-140.7.1-1.1","openSUSE Tumbleweed:MozillaThunderbird-translations-other-140.7.1-1.1"]}],"threats":[{"category":"impact","date":"2026-01-28T09:03:03Z","details":"moderate"}],"title":"CVE-2026-0818"}]}