Lucene search
+L

11 matches found

Amazon
Amazon
added 2025/04/16 12:0 a.m.15 views

Medium: evolution

Issue Overview: An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make Evolution attach local files or directories to a composed email message without showing a warning to th...

6.5CVSS7.1AI score0.02682EPSS
Exploits0
Amazon
Amazon
added 2025/04/16 12:0 a.m.6 views

Medium: evolution

Issue Overview: An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make Evolution attach local files or directories to a composed email message without showing a warning to th...

6.5CVSS6.8AI score0.02682EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2020-11879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary non-RFC6068 mailto?attach=... parameter, a website or other source of mailto...

6.5CVSS6.4AI score0.02682EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 7 : evolution (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - evolution: attaching local filed/directories to composed email can lead to unintended information disclosure...

6.5CVSS6.5AI score0.02682EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 8 : evolution (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - evolution: attaching local filed/directories to composed email can lead to unintended information disclosure...

6.5CVSS6.4AI score0.02682EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/08/23 12:0 a.m.17 views

SUSE SLED12 / SLES12 Security Update : evolution (SUSE-SU-2023:3375-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3375-1 advisory. - CVE-2020-11879: Fixed issue where websites can attach local files to emails by using a proprietary parameter without...

6.5CVSS6.7AI score0.02682EPSS
Exploits0References5
OSV
OSV
added 2023/08/22 3:0 p.m.3 views

SUSE-SU-2023:3375-1 Security update for evolution

This update for evolution fixes the following issues: - CVE-2020-11879: Fixed issue where websites can attach local files to emails by using a proprietary parameter without warning the user bsc1169843. - Fix some warnings with newer WebKit - Handle frame flattening change in WebKitGTK 2.40...

6.5CVSS6.3AI score0.02682EPSS
Exploits0References4
Rosalinux
Rosalinux
added 2021/07/02 4:39 p.m.19 views

Advisory ROSA-SA-2021-1830

Software: evolution 3.28.5 OS: Cobalt 7.9 CVE-ID: CVE-2020-11879 CVE-Crit: MEDIUM CVE-DESC: A problem was found in GNOME Evolution before 3.35.91. Using the proprietary not RFC6068 parameter mailto? Attach = ..., a website or other mailto link source could cause Evolution to attach local files or...

6.5CVSS6.9AI score0.02682EPSS
Exploits0
Cvelist
Cvelist
added 2020/04/17 5:7 p.m.25 views

CVE-2020-11879

An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make Evolution attach local files or directories to a composed email message without showing a warning to the user, as...

6.3AI score0.02682EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2020/04/17 5:7 p.m.26 views

CVE-2020-11879

An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make Evolution attach local files or directories to a composed email message without showing a warning to the user, as...

6.5CVSS6.3AI score0.02682EPSS
Exploits0
CVE
CVE
added 2020/04/17 5:7 p.m.169 views

CVE-2020-11879

CVE-2020-11879 affects GNOME Evolution prior to 3.35.91. A malicious or misleading website can abuse the non‑RFC6068 mailto?attach=… parameter to attach local files or directories to a composed email without warning, enabling potential information disclosure. The issue is triggered by using a pro...

6.5CVSS6.2AI score0.02682EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder