CVE-2020-12618
CVE-2020-12618 affects eM Client prior to 7.2.33412.0 where S/MIME certificates are automatically imported, silently replacing existing ones. This enables a remote attacker to perform a man‑in‑the‑middle attack by obtaining an email‑validated S/MIME certificate from a trusted CA and substituting ...