2 matches found
Nylas Mail Lives Information Disclosure Vulnerability
Nylas Mail Lives is an open source, extensible desktop mail application. A security vulnerability exists in Nylas Mail Lives version 2.2.2, which stems from the program assigning 0755 privileges to $HOME/.nylas-mail. A local attacker can exploit the vulnerability to obtain sensitive authenticatio...
CVE-2017-1000485
Nylas Mail Lives 2.2.2 uses 0755 permissions for $HOME/.nylas-mail, which allows local users to obtain sensitive authentication information via standard filesystem operations...