CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

EUVD•added 2025/12/12 2:30 a.m.•3 views

EUVD-2025-202943

When the user set the Notification's sender to send emails to the SMTP server via msmtp, an improper validated TLS/SSL certificates allows an attacker who can intercept network traffic between the SMTP client and server to execute a man-in-the-middle MITM attack, which may obtain the sensitive...

7CVSS6.2AI score0.00019EPSS

Exploits0References2

Vulnrichment•added 2025/12/12 2:30 a.m.•2 views

CVE-2025-13052 An improper certificates validation vulnerability was found in the Notification settings of ADM

7CVSS6.4AI score0.00019EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-17727

Malware in sbrugna...

5.3CVSS5.3AI score0.00144EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2009-3913

Malware in sbrugna...

6.4CVSS6.1AI score0.0019EPSS

Exploits0References6

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2019-8337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In msmtp 1.8.2 and mpop 1.4.3, when tlstrustfile has its default configuration, certificate-verification results are not properly checked. CVE-2019-8337 Note th...

5.3CVSS5.6AI score0.00144EPSS

Exploits0References2

OSV•added 2024/06/15 12:0 a.m.•12 views

OPENSUSE-SU-2024:11064-1 msmtp-1.8.16-1.1 on GA media

These are all security issues fixed in the msmtp-1.8.16-1.1 package on the GA media of openSUSE Tumbleweed...

5.3CVSS5.4AI score0.00144EPSS

Exploits0References1

BDU FSTEC•added 2020/07/15 12:0 a.m.•0 views

The vulnerability of the tls_trust_file command in the SMTP client Msmtp and the POP3 client Mpop allows attackers to compromise the integrity, availability, and confidentiality of information.

The vulnerability of the tlstrustfile command in the SMTP client Msmtp and the POP3 client Mpop is related to incorrect authentication of the certificate’s authenticity. Exploiting this vulnerability allows a malicious actor to compromise the integrity, availability, and confidentiality of...

5.3CVSS0.00144EPSS

Exploits0References3Affected Software2

Tenable Nessus•added 2019/02/19 12:0 a.m.•25 views

FreeBSD : msmtp -- certificate-verification issue (f0416fb5-3130-11e9-a5ba-e0d55e883e26)

msmtp developers report : In msmtp 1.8.2, when tlstrustfile has its default configuration, certificate-verification results are not properly checked. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...

5.3CVSS5.6AI score0.00144EPSS

Exploits0References3

ArchLinux•added 2019/02/17 12:0 a.m.•16 views

[ASA-201902-22] msmtp: certificate verification bypass

Arch Linux Security Advisory ASA-201902-22 ========================================== Severity: High Date : 2019-02-17 CVE-ID : CVE-2019-8337 Package : msmtp Type : certificate verification bypass Remote : Yes Link : https://security.archlinux.org/AVG-905 Summary ======= The package msmtp before...

5.3CVSS1.2AI score0.00144EPSS

Exploits0References4