Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-7968

Опубликовано: 23 дек. 2016
Источник: nvd
CVSS3: 6.5
CVSS2: 7.5
EPSS Низкий

Описание

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. HTML Mail contents were not sanitized for JavaScript and included code was executed.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:kde:kmail:*:*:*:*:*:*:*:*
Версия до 5.3.0 (включая)

EPSS

Процентиль: 47%
0.0024
Низкий

6.5 Medium

CVSS3

7.5 High

CVSS2

Дефекты

CWE-94

Связанные уязвимости

ubuntu логотип

CVE-2016-7968

CVSS3: 6.5
ubuntu
около 9 лет назад

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. HTML Mail contents were not sanitized for JavaScript and included code was executed.

redhat логотип

CVE-2016-7968

CVSS3: 4.3
redhat
больше 9 лет назад

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. HTML Mail contents were not sanitized for JavaScript and included code was executed.

debian логотип

CVE-2016-7968

CVSS3: 6.5
debian
около 9 лет назад

KMail since version 5.3.0 used a QWebEngine based viewer that had Java ...

github логотип

GHSA-grrh-62pc-382r

CVSS3: 6.5
github
больше 3 лет назад

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. HTML Mail contents were not sanitized for JavaScript and included code was executed.

EPSS

Процентиль: 47%
0.0024
Низкий

6.5 Medium

CVSS3

7.5 High

CVSS2

Дефекты

CWE-94