10 matches found
EUVD-2017-1604
Malware in sbrugna...
CVE-2017-1000485
Nylas Mail Lives 2.2.2 uses 0755 permissions for $HOME/.nylas-mail, which allows local users to obtain sensitive authentication information via standard filesystem operations...
MAL-2022-4989 Malicious code in nylas-mail-all (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5cc8ea198e81b0fc8307cbea75e5735d219ac373362c7748102cb514207959d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in nylas-mail-all (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5cc8ea198e81b0fc8307cbea75e5735d219ac373362c7748102cb514207959d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Nylas Mail Lives Information Disclosure Vulnerability
Nylas Mail Lives is an open source, extensible desktop mail application. A security vulnerability exists in Nylas Mail Lives version 2.2.2, which stems from the program assigning 0755 privileges to $HOME/.nylas-mail. A local attacker can exploit the vulnerability to obtain sensitive authenticatio...
CVE-2017-1000485
Nylas Mail Lives 2.2.2 uses 0755 permissions for $HOME/.nylas-mail, which allows local users to obtain sensitive authentication information via standard filesystem operations...
CVE-2017-1000485
Nylas Mail Lives 2.2.2 uses 0755 permissions for $HOME/.nylas-mail, which allows local users to obtain sensitive authentication information via standard filesystem operations...
Authentication flaw
Nylas Mail Lives 2.2.2 uses 0755 permissions for $HOME/.nylas-mail, which allows local users to obtain sensitive authentication information via standard filesystem operations...
CVE-2017-1000485
Nylas Mail Lives 2.2.2 uses 0755 permissions for $HOME/.nylas-mail, which allows local users to obtain sensitive authentication information via standard filesystem operations...
CVE-2017-1000485
CVE-2017-1000485 affects Nylas Mail Lives 2.2.2. The root cause is that the application assigns 0755 permissions to the directory "$HOME/.nylas-mail", enabling local users to read sensitive authentication data via standard filesystem operations. The reports in multiple sources confirm this disclo...