CVE-2017-9604 in KMailالمعلومات

الملخص

بحسب MITRE

KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

13/06/2017

إفشاء

13/06/2017

الاعتدال

تمت الموافقة

إدخال

VDB-102371

CPE

جاهز

CWE

CWE-200 (مؤكد)

CVSS

7.5 (NVD)

EPSS

0.00163

KEV

لا

النشاطات

منخفض جدًا

القطاع

Energy, Pharma, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9604
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9604
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9604/

التالي ▸نظرة عامة ◂ السابق

Want to know what is going to be exploited?

We predict KEV entries!