4 matches found
EUVD-2018-7390
Malware in sbrugna...
Design/Logic Flaw
Log viewer in totemomail 6.0.0 build 570 allows access to sessionIDs of high privileged users by leveraging access to a read-only auditor role...
CVE-2018-15513
CVE-2018-15513 affects totemomail 6.0.0 build 570 where the log viewer API/feature enables access to session IDs of high-privilege users by abusing access granted to a read-only auditor role. The underlying cause is not detailed beyond this access path; the impact is exposure of sensitive session...
CVE-2018-15513
Log viewer in totemomail 6.0.0 build 570 allows access to sessionIDs of high privileged users by leveraging access to a read-only auditor role...