Skip to main content

Iredmail

1 CVEs product

Monthly

CVE-2018-1000072 HIGH POC This Week

iRedMail version prior to commit f04b8ef contains a Insecure Permissions vulnerability in Roundcube Webmail that can result in Exfiltrate a user's password protected secret GPG key file and other. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Iredmail
NVD
CVSS 3.0
7.5
EPSS
1.8%
EPSS 2% CVSS 7.5
HIGH POC This Week

iRedMail version prior to commit f04b8ef contains a Insecure Permissions vulnerability in Roundcube Webmail that can result in Exfiltrate a user's password protected secret GPG key file and other. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Iredmail
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy