exploitDog

GHSA-xqvf-f6fr-95j7

Опубликовано: 04 мар. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 6.9

CVSS3: 7.5

Описание

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor.

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor.

Ссылки

EPSS

Процентиль: 14%

0.00047

Низкий

6.9 Medium

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2026-2747

CVSS3: 7.5

nvd

около 1 месяца назад

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor.

EPSS

Процентиль: 14%

0.00047

Низкий

6.9 Medium

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200