Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GnomeEvolution*

3 matches found

CVE
CVEadded 2020/04/17 5:7 p.m.166 views

CVE-2020-11879

CVE-2020-11879 affects GNOME Evolution prior to 3.35.91. A malicious or misleading website can abuse the non‑RFC6068 mailto?attach=… parameter to attach local files or directories to a composed email without warning, enabling potential information disclosure. The issue is triggered by using a pro...

6.5CVSS6.2AI score0.02682EPSS
CVE
CVEadded 2018/07/20 4:0 a.m.89 views

CVE-2016-10727

Evolution Data Server’s IMAPx component (camel-imapx-server.c) before version 3.21.2 allows plaintext transmission when a client requests STARTTLS but the server does not use STARTTLS, enabling password sniffing over the network. Root cause: incorrect handling that should have error-terminated th...

9.8CVSS9.1AI score0.02889EPSS
CVE
CVEadded 2021/05/26 9:6 p.m.69 views

CVE-2009-3721

CVE-2009-3721 affects yTNEF and Evolution’s TNEF parser derived from yTNEF. The vulnerabilities are described as directory traversal and buffer overflow flaws that could allow a crafted email to cause writes to arbitrary filesystem locations, application crashes, or potentially arbitrary code exe...

7.8CVSS8.2AI score0.01612EPSS