5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.003 Low
EPSS
Percentile
71.9%
Active! mail 2003 from TransWARE Co. is a web-based email software. Active! mail 2003 contains a vulnerability in which session IDs may be disclosed.
A remote attacker could impersonate a user of Active! mail 2003. As a result, the user’s email may be viewed or configurations may be modified.
Update the Software
Update to the latest version according to the information provided by the vendor.
The above products are affected by this vulnerability when the mobile function is enabled.