Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Roundcube Unspesificed Vulnerability - CVE-2018-1000071 - Vulnerability Database
Roundcube

Roundcube Unspesificed Vulnerability - CVE-2018-1000071

High
Reference: CVE-2018-1000071
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1000071
Title: Roundcube Unspesificed Vulnerability
Overview:

roundcube version 1.3.4 and earlier contains an Insecure Permissions vulnerability in enigma plugin that can result in exfiltration of gpg private key. This attack appear to be exploitable via network connectivity.