CVE-2018-15586

Опубликовано: 11 фев. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages using a PGP/INLINE signature wrapped within a specially crafted multipart HTML email.

Релиз	Статус	Примечание
bionic	not-affected	2:2.0.8-0ubuntu1~18.04.2
cosmic	not-affected
devel	not-affected
esm-apps/bionic	not-affected	2:2.0.8-0ubuntu1~18.04.2
esm-apps/xenial	not-affected	2:2.0.8-1~ubuntu0.16.04.2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [2:2.0.8-1~ubuntu0.14.04.2]]
precise/esm	DNE
trusty	not-affected	2:2.0.8-1~ubuntu0.14.04.2
trusty/esm	DNE	trusty was not-affected [2:2.0.8-1~ubuntu0.14.04.2]
upstream	released	2:2.0.6.1-2

Показывать по

Ссылки на источники

EPSS

Процентиль: 44%

0.00218

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-15586

CVSS3: 6.5

nvd

почти 7 лет назад

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages using a PGP/INLINE signature wrapped within a specially crafted multipart HTML email.

CVE-2018-15586

CVSS3: 6.5

debian

почти 7 лет назад

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed ...

GHSA-wf4h-8hc9-6ccv

CVSS3: 6.5

github

больше 3 лет назад

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages using a PGP/INLINE signature wrapped within a specially crafted multipart HTML email.

EPSS

Процентиль: 44%

0.00218

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2018-15586

Описание

Пакет enigmail

Ссылки на источники

Связанные уязвимости