CVE-2017-9604 in KMailИнформация

Сводка

по MITRE

KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

13.06.2017

Раскрытие

13.06.2017

Модерация

принято

Вход

VDB-102371

CPE

готов

CWE

CWE-200 (Подтверждённый)

CVSS

7.5 (NVD)

EPSS

0.00163

KEV

Нет

Деятельности

Очень низкий

Сектор

Industry, Chemical, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9604
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9604
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9604/

◂ Предыдущий Обзор Далее ▸