Lucene search

K

[email protected]NVD:CVE-2024-23737

HistoryJul 01, 2024 - 10:15 p.m.

CVE-2024-23737

2024-07-0122:15:02

[email protected]

web.nvd.nist.gov

2

csrf

vulnerability

savignano s/notify

jira

attackers

s/mime certificate

pgp key

malicious link

email

0.0004 Low

EPSS

Percentile

9.2%

Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user’s S/MIME certificate of PGP key via malicious link or email.

References

help.savignano.net/snotify-email-encryption/sa-2023-11-28#SA-2023-11-28-CSRFbasedvulnerabilityinuserupload

0.0004 Low

EPSS

Percentile

9.2%

Related for NVD:CVE-2024-23737

cvelist1 vulnrichment1 cve1