Pegasus
1 CVEs
product
Monthly
winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
RCE
Pegasus
NVD
CVSS 3.0
7.3
EPSS
0.1%
EPSS 0%
CVSS 7.3
HIGH
POC
This Week
winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
RCE
Pegasus
NVD