Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/06/25 11:23 p.m.9 views

CVE-2026-13324

A vulnerability has been identified in the GNOME Geary package within its mailto URI handling component. This flaw occurs because the email client automatically processes a non-standard attach parameter in email links without prompting or alerting the user. An attacker could exploit this by...

6.5CVSS5.8AI score
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-17375

Malware in sbrugna...

5.9CVSS5.7AI score0.00922EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.5 views

SUSE CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS5.7AI score0.00922EPSS
Exploits1References3
Mageia
Mageia
added 2020/10/21 1:7 p.m.41 views

Updated geary package fixes a security vulnerability

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS1.8AI score0.00922EPSS
Exploits1References2
OSV
OSV
added 2020/08/26 4:15 p.m.21 views

CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS6.6AI score
Exploits0References4
NVD
NVD
added 2020/08/26 4:15 p.m.12 views

CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS5.6AI score0.00922EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2020/08/26 4:15 p.m.18 views

CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS6.2AI score0.00922EPSS
Exploits1References3
Prion
Prion
added 2020/08/26 4:15 p.m.18 views

Code injection

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

2.6CVSS5.6AI score0.00922EPSS
Exploits1References4Affected Software2
OSV
OSV
added 2020/08/26 4:15 p.m.3 views

UBUNTU-CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS6.3AI score0.00922EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/08/26 3:6 p.m.26 views

CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.5AI score0.00922EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2020/08/26 3:6 p.m.22 views

CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS5.6AI score0.00922EPSS
Exploits1
CVE
CVE
added 2020/08/26 3:6 p.m.96 views

CVE-2020-24661

CVE-2020-24661 affects GNOME Geary prior to 3.36.3. The issue stems from mishandling of pinned TLS certificate verification for IMAP/SMTP when the client is not configured to use a system PKCS#11 store, allowing a MITM to present an invalid certificate and intercept mail. Public sources in the co...

5.9CVSS5.4AI score0.00922EPSS
Exploits1References4Affected Software1
AlpineLinux
AlpineLinux
added 2020/08/26 3:6 p.m.45 views

CVE-2020-24661

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates e.g., self-signed certificates when the client system is not configured to use a system-provided PKCS11 store. This allows a meddler in the middle to present a...

5.9CVSS5.6AI score0.00922EPSS
Exploits1
Rows per page
Query Builder