Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
iRedMail version prior to commit f04b8ef contains a Insecure Permissions vulnerability in Roundcube Webmail that can result in Exfiltrate a user's password protected secret GPG key file and other important configuration files.. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in Beta: 0.9.8-BETA1, Stable: 0.9.7.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
iRedMail Roundcube Webmail 安全漏洞
Vulnerability Description
iRedMail是一套开源的电子邮件服务器解决方案。Roundcube Webmail是其中的一个基于浏览器的邮件客户端。 iRedMail commit f04b8ef之前版本中的Roundcube Webmail存在安全漏洞。远程攻击者可通过发送特制的请求利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A