CVE-2024-23737

2024-07-0100:00:00

mitre

www.cve.org

cve-2024-23737

csrf

savignano s/notify

jira

s/mime certificate

pgp key

malicious link

0.0004 Low

EPSS

Percentile

9.2%

JSON

Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user’s S/MIME certificate of PGP key via malicious link or email.

References

help.savignano.net/snotify-email-encryption/sa-2023-11-28#SA-2023-11-28-CSRFbasedvulnerabilityinuserupload

0.0004 Low

EPSS

Percentile

9.2%

JSON

Related for CVELIST:CVE-2024-23737