Trojita Security Vulnerabilities and Issues — Trojita CVE List

Lucene search

Trojita ProjectTrojita

3 matches found

CVE•added 2020/06/25 11:15 a.m.•38 views

CVE-2020-15047

MSA/SMTP.cpp in Trojita before 0.8 ignores certificate-verification errors, which allows man-in-the-middle attackers to spoof SMTP servers.

5.9CVSS5.4AI score0.00125EPSS

CVE•added 2014/03/21 10:55 a.m.•33 views

CVE-2014-2567

The OpenConnectionTask::handleStateHelper function in Imap/Tasks/OpenConnectionTask.cpp in Trojita before 0.4.1 allows man-in-the-middle attackers to trigger use of cleartext for saving a message into a (1) sent or (2) draft folder via a PREAUTH response that prevents later use of the STARTTLS comm...

4.3CVSS6.5AI score0.00255EPSS

CVE•added 2019/04/07 3:29 p.m.•33 views

CVE-2019-10734

In KDE Trojita 0.7, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the in...

4.3CVSS4.5AI score0.00117EPSS