Lucene search
K

10 matches found

OSV
OSV
added 2024/11/12 2:15 a.m.1 views

UBUNTU-CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS5.8AI score0.00331EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2014/01/07 12:0 a.m.17 views

SuSE 11.2 / 11.3 Security Update : openssl-certs (SAT Patch Numbers 8681 / 8682)

openssl-certs was updated with the current certificate data available from mozilla.org. Changes : - Updated certificates to revision 1.95 Distrust a sub-ca that issued google.com certificates. 'Distrusted AC DG Tresor SSL'. bnc854367 Many CA updates from Mozilla : - new:...

5.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2013/12/17 12:0 a.m.8 views

openSUSE: Security Advisory for ca-certificates-mozilla (openSUSE-SU-2013:1891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3AI score
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2013/12/13 3:4 p.m.16 views

ca-certificates-mozilla: add, remove or blacklist some certificates (important)

The Mozilla CA certificates package was updated to match the current Mozilla revision 1.95 of certdata.txt. It blacklists some misused certificate authorities, adds some new and adjusts some others. On openSUSE 13.1 a problem with names was also fixed. distrust: AC DG Tresor SSL bnc854367 new:...

2.5AI score
Exploits0References2
OSV
OSV
added 2013/07/24 12:1 p.m.1 views

DEBIAN-CVE-2012-6581

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...

4.3CVSS7AI score0.012EPSS
Exploits0References1
OSV
OSV
added 2013/07/24 12:1 p.m.8 views

CVE-2012-6581

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...

6.3AI score
Exploits0References2
OSV
OSV
added 2013/07/24 12:1 p.m.4 views

UBUNTU-CVE-2012-6579

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to configure encryption or signing for certain outbound e-mail, and possibly cause a denial of service loss of e-mail readability, via an e-mail message to a queue's address...

6.4CVSS5.8AI score0.00792EPSS
Exploits0References3
OSV
OSV
added 2013/07/24 12:1 p.m.3 views

UBUNTU-CVE-2012-6581

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...

4.3CVSS6AI score0.012EPSS
Exploits0References3
CVE
CVE
added 2013/07/24 10:0 a.m.48 views

CVE-2012-6581

Best Practical Solutions RT: Affected versions are RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8 with GnuPG enabled. The vulnerability lets remote attackers bypass restrictions on reading keys in the keyring and trigger outbound e‑mail messages signed by an arbitrary stored secret key by abusing ...

4.3CVSS6.4AI score0.012EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2012/10/26 12:0 a.m.24 views

DSA-2567-1 request-tracker3.8 - several

Bulletin has no description...

6.8CVSS6AI score0.01822EPSS
Exploits0
Rows per page
Query Builder