CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
58.3%
MailEnable Professional before 1.78 provides a cleartext user password when an administrator edits the user’s settings, which allows remote authenticated administrators to obtain sensitive information by viewing the HTML source.
Vendor | Product | Version | CPE |
---|---|---|---|
mailenable | mailenable_professional | 1.7 | cpe:2.3:a:mailenable:mailenable_professional:1.7:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.71 | cpe:2.3:a:mailenable:mailenable_professional:1.71:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.72 | cpe:2.3:a:mailenable:mailenable_professional:1.72:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.73 | cpe:2.3:a:mailenable:mailenable_professional:1.73:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.74 | cpe:2.3:a:mailenable:mailenable_professional:1.74:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.75 | cpe:2.3:a:mailenable:mailenable_professional:1.75:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.76 | cpe:2.3:a:mailenable:mailenable_professional:1.76:*:*:*:*:*:*:* |
mailenable | mailenable_professional | 1.77 | cpe:2.3:a:mailenable:mailenable_professional:1.77:*:*:*:*:*:*:* |