Описание
Unspecified vulnerability in NetWin Webmail 3.1s-1 in SurgeMail before 3.8i2 has unknown impact and remote attack vectors, possibly a format string vulnerability that allows remote code execution.
Ссылки
- PatchVendor Advisory
- Patch
- Patch
- Vendor Advisory
- PatchVendor Advisory
- Patch
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:netwin:surgemail:3.8f3:*:*:*:*:*:*:*
cpe:2.3:a:netwin:surgemail:3.8i:*:*:*:*:*:*:*
cpe:2.3:a:netwin:surgemail:3.8i2:*:*:*:*:*:*:*
cpe:2.3:a:netwin:webmail:3.1s1:*:*:*:*:*:*:*
cpe:2.3:a:netwin:webmail:3.1s13:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03524
Низкий
7.5 High
CVSS2
Дефекты
CWE-134
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in NetWin Webmail 3.1s-1 in SurgeMail before 3.8i2 has unknown impact and remote attack vectors, possibly a format string vulnerability that allows remote code execution.
EPSS
Процентиль: 87%
0.03524
Низкий
7.5 High
CVSS2
Дефекты
CWE-134