Описание
An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Incorrect password comparison in the password plugin could lead to type confusion that allows a password change without knowing the old password.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| jammy | needs-triage | |
| noble | needs-triage | |
| questing | needs-triage | |
| upstream | released | 1.6.14+dfsg-1 |
Показывать по
10
Ссылки на источники
4.2 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.2
nvd
12 дней назад
An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Incorrect password comparison in the password plugin could lead to type confusion that allows a password change without knowing the old password.
CVSS3: 4.2
debian
12 дней назад
An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. ...
CVSS3: 4.2
github
12 дней назад
Roundcube Webmail: Incorrect password comparison in the password plugin
4.2 Medium
CVSS3