Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

46 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-5821

Malware in sbrugna...

6.5CVSS6.7AI score0.00144EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-8846

Malware in sbrugna...

5.9CVSS6.1AI score0.00447EPSS
Exploits2References8
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.12 views

RHEL 7 : kdepim (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kmail: Send Later with Delay bypasses OpenPGP CVE-2017-9604 - KDE KMail does not encrypt attachments in...

7.5CVSS7.2AI score0.00447EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.16 views

RHEL 6 : kdepim (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kmail: Send Later with Delay bypasses OpenPGP CVE-2017-9604 - KDE KMail does not encrypt attachments in...

7.5CVSS7.2AI score0.00447EPSS
Exploits2References3
SUSE CVE
SUSE CVEadded 2023/02/15 4:36 a.m.1 views

SUSE CVE-2017-17689

The S/MIME specification allows a Cipher Block Chaining CBC malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL...

5.9CVSS6.2AI score0.00447EPSS
Exploits2References10
RedhatCVE
RedhatCVEadded 2020/04/04 5:18 p.m.29 views

CVE-2017-17688

DISPUTED The OpenPGP specification allows a Cipher Feedback Mode CFB malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. NOTE: third parties report that this is a problem in applications that mishandle the Modification Detection Code MDC feature or accept an...

5.9CVSS1AI score0.02845EPSS
Exploits2References2
NVD
NVDadded 2019/08/05 8:15 p.m.18 views

CVE-2019-14664

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

6.5CVSS6.2AI score0.00144EPSS
Exploits1References5
OSV
OSVadded 2019/08/05 8:15 p.m.6 views

CVE-2019-14664

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

6.5CVSS6.4AI score
Exploits0References5
OSV
OSVadded 2019/08/05 8:15 p.m.1 views

UBUNTU-CVE-2019-14664

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

6.5CVSS6.9AI score0.00144EPSS
Exploits1References4
Prion
Prionadded 2019/08/05 8:15 p.m.13 views

Design/Logic Flaw

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

4.3CVSS6.2AI score0.00144EPSS
Exploits1References5Affected Software2
Debian CVE
Debian CVEadded 2019/08/05 7:25 p.m.30 views

CVE-2019-14664

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

6.5CVSS6.7AI score0.00144EPSS
Exploits1
Cvelist
Cvelistadded 2019/08/05 7:25 p.m.17 views

CVE-2019-14664

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

6.2AI score0.00144EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2019/04/17 12:0 a.m.33 views

Apple iOS < 12.0 Multiple Vulnerabilities (EFAIL, APPLE-SA-2018-9-24-4 and APPLE-SA-2018-10-30-8)

Binary data 700552.prm...

10CVSS7.2AI score0.90832EPSS
Exploits30References62
Tenable Nessus
Tenable Nessusadded 2019/04/17 12:0 a.m.26 views

Apple iOS < 11.4 Multiple Vulnerabilities (EFAIL)

Binary data 700550.prm...

9.3CVSS8.5AI score0.89897EPSS
Exploits44References40
Tenable Nessus
Tenable Nessusadded 2019/03/27 12:0 a.m.41 views

openSUSE Security Update : enigmail (openSUSE-2019-395) (EFAIL)

This update for enigmail to version 2.0.5 fixes the following issues : Improvements on previous fixes on CVE-2017-17688, boo1093151 and CVE-2017-17689, boo1093152 EFAIL : - do not decrypt MIME parts unnecessarily - improve Error Message for Missing Message Modification Code %NASLMINLEVEL 70300 C...

5.9CVSS6.5AI score0.02845EPSS
Exploits3References4
Tenable Nessus
Tenable Nessusadded 2019/03/27 12:0 a.m.30 views

openSUSE Security Update : enigmail (openSUSE-2019-368) (EFAIL)

This update for enigmail fixes multiple issues. Security issues fixed : - CVE-2017-17688: CFB gadget attacks allowed to exfiltrate plaintext out of encrypted emails. enigmail now fails on GnuPG integrity check warnings for old Algorithms bsc1093151 - CVE-2017-17689: CBC gadget attacks allows to...

5.9CVSS6.5AI score0.02845EPSS
Exploits3References4
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.33 views

Fedora 28 : thunderbird-enigmail (2018-77fe2e20ad) (EFAIL)

Enigmail update to version 2.0.4, introduces fixes for the efail attack. Please check and modify your Thunderbird settings if required: https://enigmail.net/index.php/en/home/news/66-2018-05-16-efail-vulner ability-affects-encrypted-mails Note that Tenable Network Security has extracted the...

5.9CVSS6.2AI score0.02845EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.11 views

Fedora 28 : thunderbird-enigmail (2018-e6ee09fc50)

Some more efail fixes, https://enigmail.net/index.php/en/download/changelog Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2018/09/21 12:0 a.m.36 views

Apple iOS < 12.0 Multiple Vulnerabilities (EFAIL)

Binary data appleios120check.nbin...

10CVSS7.3AI score0.90832EPSS
Exploits30References62
OpenVAS
OpenVASadded 2018/08/26 12:0 a.m.138 views

Roundcube Webmail < 1.3.7 Enigma Plugin PGP Vulnerability (EFAIL)

Roundcube Webmail is prone to an information disclosure vulnerability in the Enigma Plugin. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...

7.5CVSS5.8AI score0.02845EPSS
Exploits2References3
Rows per page
Query Builder