11 matches found
CVE-2025-65319
When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...
EUVD-2025-203806
When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...
CVE-2025-65319
When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...
CVE-2025-65319
When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...
CVE-2025-65319
CVE-2025-65319 affects Blue Mail
Blue Mail 安全漏洞
Blue Mail is an email client from Blue Mail, Inc. A security vulnerability exists in Blue Mail versions 1.140.103 and earlier, which stems from a failure to add the Mark-of-the-Web tag when saving a document, and could lead to a bypass of the file protection mechanism...
CVE-2025-65319
When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...
CVE-2025-65319
When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...
Exploit for CVE-2025-65318
PoC for CVE-2025-65318 and CVE-2025-65319 - CVE-2025-65318...
PT-2025-51552
Name of the Vulnerable Software and Affected Versions Canary Mail affected versions not specified Blue Mail affected versions not specified Description A flaw exists in the data protection mechanisms of email clients. Remote attackers may be able to conduct phishing attacks by exploiting this...
PT-2025-51553
Name of the Vulnerable Software and Affected Versions Blue Mail versions 1.140.103 and below Description Blue Mail’s attachment interaction functionality saves documents to the file system without a Mark-of-the-Web tag. This bypasses file protection mechanisms in Windows OS and third-party...