Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2018-0354)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.08654EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.31 views

openSUSE Security Update : enigmail (openSUSE-2019-477)

This update for enigmail fixes vulnerabilities that allowed spoofing of e-mail signatures : - CVE-2018-12019: signature spoofing via specially crafted OpenPGP user IDs boo1097525 - CVE-2018-12020: signature spoofing via diagnostic output of the original file name in GnuPG verbose mode boo1096745...

7.5CVSS7.1AI score0.08654EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.35 views

Fedora 28 : thunderbird-enigmail (2018-a4bb79ea75)

Security fix CVE-2018-12019 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

7.5CVSS7.1AI score0.02143EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/06/25 12:0 a.m.28 views

Fedora 27 : thunderbird-enigmail (2018-fd67c19256)

Security fix CVE-2018-12019 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

7.5CVSS7.1AI score0.02143EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/06/23 12:0 a.m.29 views

Fedora Update for thunderbird-enigmail FEDORA-2018-fd67c19256

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02143EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/06/18 12:0 a.m.41 views

openSUSE Security Update : enigmail (openSUSE-2018-630)

This update for enigmail fixes vulnerabilities that allowed spoofing of e-mail signatures : - CVE-2018-12019: signature spoofing via specially crafted OpenPGP user IDs boo1097525 - CVE-2018-12020: signature spoofing via diagnostic output of the original file name in GnuPG verbose mode boo1096745...

7.5CVSS7AI score0.08654EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2018/06/16 12:0 a.m.33 views

openSUSE: Security Advisory for enigmail (openSUSE-SU-2018:1708-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.2AI score0.08654EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/06/15 9:12 p.m.77 views

Security update for enigmail (moderate)

This update for enigmail fixes vulnerabilities that allowed spoofing of e-mail signatures: - CVE-2018-12019: signature spoofing via specially crafted OpenPGP user IDs boo1097525 - CVE-2018-12020: signature spoofing via diagnostic output of the original file name in GnuPG verbose mode boo1096745...

3AI score0.08654EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/06/15 9:11 p.m.58 views

Security update for enigmail (moderate)

This update for enigmail fixes vulnerabilities that allowed spoofing of e-mail signatures: - CVE-2018-12019: signature spoofing via specially crafted OpenPGP user IDs boo1097525 - CVE-2018-12020: signature spoofing via diagnostic output of the original file name in GnuPG verbose mode boo1096745...

3AI score0.08654EPSS
Exploits1References2
OSV
OSV
added 2018/06/13 11:29 p.m.7 views

CVE-2018-12019

The signature verification routine in Enigmail before 2.0.7 interprets user ids as status/control messages and does not correctly keep track of the status of multiple signatures, which allows remote attackers to spoof arbitrary email signatures via public keys containing crafted primary user ids...

7.5CVSS7.6AI score
Exploits0References7
CVE
CVE
added 2018/06/13 11:0 p.m.59 views

CVE-2018-12019

CVE-2018-12019 affects Enigmail (Thunderbird integration) prior to 2.0.7. The vulnerability resides in the signature verification routine, which misinterprets OpenPGP user IDs as status/control messages and fails to correctly track the status of multiple signatures. This enables remote attackers ...

7.5CVSS7.4AI score0.02143EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder