Roundcube Unspesificed Vulnerability - CVE-2018-1000071 - Vulnerability Database

Roundcube Unspesificed Vulnerability - CVE-2018-1000071

High
Reference: CVE-2018-1000071
Title: Roundcube Unspesificed Vulnerability
Overview:

roundcube version 1.3.4 and earlier contains an Insecure Permissions vulnerability in enigma plugin that can result in exfiltration of gpg private key. This attack appear to be exploitable via network connectivity.