CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5458 matches found

UbuntuCve•added 2019/04/07 3:29 p.m.•25 views

CVE-2019-10732

In KDE KMail 5.2.3, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the...

4.3CVSS6.1AI score0.00586EPSS

Exploits1References4

NVD•added 2019/04/07 3:29 p.m.•12 views

CVE-2019-10735

In Claws Mail 3.14.1, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the...

4.3CVSS4.4AI score0.00604EPSS

Exploits1References1

OSV•added 2019/04/07 3:29 p.m.•1 views

UBUNTU-CVE-2019-10735

4.3CVSS5.8AI score0.00604EPSS

Exploits1References3

OSV•added 2019/04/07 3:29 p.m.•1 views

UBUNTU-CVE-2019-10734

In KDE Trojita 0.7, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the...

4.3CVSS5.8AI score0.00693EPSS

Exploits1References3

OSV•added 2019/04/07 3:29 p.m.•1 views

DEBIAN-CVE-2019-10732

4.3CVSS6.8AI score0.00586EPSS

Exploits1References1

OSV•added 2019/04/07 3:29 p.m.•1 views

DEBIAN-CVE-2019-10735

4.3CVSS6.8AI score0.00604EPSS

Exploits1References1

OSV•added 2019/04/07 3:29 p.m.•1 views

UBUNTU-CVE-2019-10740

In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the...

4.3CVSS6.7AI score0.00771EPSS

Exploits1References4

OSV•added 2019/04/07 3:29 p.m.•1 views

DEBIAN-CVE-2019-10740

4.3CVSS6.8AI score0.00771EPSS

Exploits1References1

OSV•added 2019/04/07 3:29 p.m.•4 views

CVE-2019-10735

4.3CVSS6.6AI score

Exploits0References1

Cvelist•added 2019/04/07 2:36 p.m.•28 views

CVE-2019-10740

5.8AI score0.00771EPSS

Exploits1References4

Cvelist•added 2019/04/07 2:35 p.m.•15 views

CVE-2019-10735

4.4AI score0.00604EPSS

Exploits1References1

CVE•added 2019/04/07 2:35 p.m.•45 views

CVE-2019-10735

CVE-2019-10735 affects Claws Mail 3.14.1. An attacker who has access to S/MIME or PGP encrypted emails can wrap the encrypted parts as sub-parts inside a crafted multipart message. The attacker can hide these parts using HTML/CSS or ASCII newline characters, re-sending the modified email to the t...

4.3CVSS4.4AI score0.00604EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/04/07 2:34 p.m.•40 views

CVE-2019-10734

4.7AI score0.00693EPSS

Exploits1References1

Cvelist•added 2019/04/07 2:32 p.m.•25 views

CVE-2019-10732

4.2AI score0.00586EPSS

Exploits1References2

Debian CVE•added 2019/04/07 2:32 p.m.•23 views

CVE-2019-10732

4.3CVSS4.4AI score0.00586EPSS

Exploits1

Positive Technologies•added 2019/04/07 12:0 a.m.•2 views

PT-2019-12017

Name of the Vulnerable Software and Affected Versions Roundcube Webmail versions prior to 1.3.10 Description The issue allows an attacker with S/MIME or PGP encrypted emails to craft a multipart email, hiding the encrypted parts using HTML/CSS or ASCII newline characters. When the receiver replie...

9.8CVSS6.9AI score0.84456EPSS

Exploits15References49

Tenable Nessus•added 2019/04/05 12:0 a.m.•19 views

Cisco IOS XE Software Encrypted Traffic Analytics Denial of Service Vulnerability

According to its self-reported version, Cisco IOS XE Software is affected by following vulnerability - A vulnerability in the Cisco Encrypted Traffic Analytics ETA feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition.The...

8.6CVSS7.7AI score0.02764EPSS

Exploits0References4

IBM Security Bulletins•added 2019/03/29 10:55 a.m.•11 views

Security Bulletin: IBM Event Streams could allow a remote attacker to bypass security restrictions by modifying the UI session cookie

Summary IBM Event Streams could allow a remote attacker to bypass security restrictions after authenticating with Event Streams. By modifying the UI session cookie, it may be possible for a remote attacker to steal user and session information that was sent during an encrypted session...

2AI score

Exploits0Affected Software1

myhack58•added 2019/03/29 12:0 a.m.•116 views

UC Browser is the presence of man in the middle attacks(MITM)vulnerability that could impact more than a billion devices-vulnerability warning-the black bar safety net

Researchers find UC Browser in the presence of a vulnerable functional block can be exploited by attackers to perform MiTM attacks. Because the UC Browser using the HTTP Protocol to communicate with the server, the transmission information is not encrypted, so the would be attacker hook request...

0.5AI score

Exploits0

OSV•added 2019/03/28 12:29 a.m.•3 views

CVE-2019-1741

A vulnerability in the Cisco Encrypted Traffic Analytics ETA feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to a logic error that exists when handling a malformed incoming packet, leading to...

7.5CVSS7.1AI score0.02764EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by