Lucene search
K

7 matches found

NVD
NVD
added 2026/04/02 9:16 a.m.5 views

CVE-2026-29140

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to cause attacker-controlled certificates to be used for future encryption to a victim by adding the certificates to S/MIME signatures...

7.7CVSS0.0012EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/02 8:27 a.m.1 views

CVE-2026-29140

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to cause attacker-controlled certificates to be used for future encryption to a victim by adding the certificates to S/MIME signatures...

7.7CVSS5.9AI score0.0012EPSS
Exploits0References2
OSV
OSV
added 2025/01/09 3:15 p.m.2 views

DEBIAN-CVE-2023-24010

An attacker can arbitrarily craft malicious DDS Participants or ROS 2 Nodes with valid certificates to compromise and get full control of the attacked secure DDS databus system by exploiting vulnerable attributes in the configuration of PKCS7 certificate’s validation. This is caused by a...

8.2CVSS5.4AI score0.00326EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/02/06 4:57 p.m.3 views

Mozilla: Revocation status of S/Mime signature certificates was not checked

The Mozilla Foundation Security Advisory describes this flaw as: Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by thi...

6.5CVSS7.3AI score0.00372EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.2 views

Mozilla Thunderbird 信任管理问题漏洞

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP, POP mail protocols and HTML mail format. Mozilla Thunderbird suffers from a trust management issue because it fails to check the...

6.5CVSS6.6AI score0.00372EPSS
Exploits0References8
OSV
OSV
added 2021/12/08 10:15 p.m.3 views

ALPINE-CVE-2021-43527

NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \7, or PKCS \12 are likely to be impacted. Applications using N...

9.8CVSS7.1AI score0.17563EPSS
Exploits0References1
OSV
OSV
added 2017/02/20 8:59 a.m.3 views

CVE-2016-4689

An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Mail" component, which does not alert the user to an S/MIME email signature that used a revoked certificate...

7.5CVSS5.8AI score0.01003EPSS
Exploits0References3
Rows per page
Query Builder