CVE-2025-26842

Опубликовано: 08 мая 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in Znuny through 7.1.3. If access to a ticket is not given, the content of S/MIME encrypted e-mail messages is visible to users with access to the CommunicationLog.

Ссылки

https://www.znuny.org/en/advisories/zsa-2025-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:znuny:znuny:*:*:*:*:-:*:*:*

Версия до 7.1.3 (включая)

EPSS

Процентиль: 22%

0.00073

Низкий

7.5 High

CVSS3

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-26842

CVSS3: 7.5

ubuntu

9 месяцев назад

An issue was discovered in Znuny through 7.1.3. If access to a ticket is not given, the content of S/MIME encrypted e-mail messages is visible to users with access to the CommunicationLog.

CVE-2025-26842

CVSS3: 7.5

debian

9 месяцев назад

An issue was discovered in Znuny through 7.1.3. If access to a ticket ...

GHSA-c2x5-mpj8-v9v9

CVSS3: 7.5

github

9 месяцев назад

An issue was discovered in Znuny through 7.1.3. If access to a ticket is not given, the content of S/MIME encrypted e-mail messages is visible to users with access to the CommunicationLog.

EPSS

Процентиль: 22%

0.00073

Низкий

7.5 High

CVSS3

Дефекты

CWE-863