98 matches found
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
A flaw was found in OpenSSL's CMSdecrypt and PKCS7decrypt functions. This vulnerability, a Bleichenbacher-style oracle, could allow a remote attacker to decrypt or sign messages using the victim's private RSA key. Exploitation requires the attacker to provide specially crafted CMS or S/MIME...
Astra Linux – Vulnerability in Thunderbird
Certain crafted MIME email messages that claimed to contain encrypted OpenPGP messages actually contained an OpenPGP-signed message. These messages were incorrectly displayed as encrypted. This vulnerability was fixed in Thunderbird 136 and Thunderbird 128.8...
CVE-2026-34975 Plunk has a CRLF Email Header Injection in raw MIME message construction allows authenticated API user to inject arbitrary email headers
Plunk is an open-source email platform built on top of AWS SES. Prior to 0.8.0, a CRLF header injection vulnerability was discovered in SESService.ts, where user-supplied values for from.name, subject, custom header keys/values, and attachment filenames were interpolated directly into raw MIME...
CVE-2026-29143
SEPPmail Secure Email Gateway before version 15.0.3 does not properly authenticate the inner message of S/MIME-encrypted MIME entities, allowing an attacker to control trusted headers...
CVE-2026-31934
Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4...
CVE-2026-31934 Suricata smtp/mine: quadratic complexity in extracting urls
Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4...
CVE-2026-29143
SEPPmail Secure Email Gateway before version 15.0.3 does not properly authenticate the inner message of S/MIME-encrypted MIME entities, allowing an attacker to control trusted headers...
Suricata 安全漏洞
Suricata is a network IDS, IPS, and NSM engine developed by the Open Information Security Foundation. Versions of Suricata prior to 8.0.0 and 8.0.4 contained security vulnerabilities. These vulnerabilities stemmed from a quadratic complexity issue during the search for URLs in MIME-encoded SMTP...
PT-2026-29706
SEPPmail Secure Email Gateway before version 15.0.3 does not properly authenticate the inner message of S/MIME-encrypted MIME entities, allowing an attacker to control trusted headers...
EUVD-2004-0052
Malware in sbrugna...
EUVD-2004-0051
Malware in sbrugna...
EUVD-2005-4689
Malware in sbrugna...
EUVD-2003-1005
Malware in sbrugna...
EUVD-2006-0637
Malware in sbrugna...
EUVD-2003-1004
Malware in sbrugna...
EUVD-2003-1006
Malware in sbrugna...
EUVD-2004-0053
Malware in sbrugna...
EUVD-1999-0921
Malware in sbrugna...
EUVD-2008-5402
Malware in sbrugna...
EUVD-2021-30458
Malicious code in bioql PyPI...