CVE-2017-9604 in KMailinfo

Zusammenfassung

von MITRE

KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

13.06.2017

Veröffentlichung

13.06.2017

Moderieren

akzeptiert

Eintrag

VDB-102371

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

7.5 (NVD)

EPSS

0.00163

KEV

nein

Aktivitäten

very low

Sektor

Chemical, Hospital, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9604
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9604
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9604/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!