Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery (CSRF) vulnerability in dirmngr that can result in Attacker controlled CSRF, Information Disclosure, DoS. This attack appear to be exploitable via Victim must perform a WKD request, e.g. enter an email address in the composer window of Thunderbird/Enigmail. This vulnerability appears to have been fixed in after commit 4a4bb874f63741026bd26264c43bb32b1099f060.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GnuPG 跨站请求伪造漏洞
Vulnerability Description
GnuPG是GNU社区的一套开源的加密软件,采用GNU通用公共许可证。该软件支持公钥、对称加密、散列等算法。 GnuPG 2.1.12版本至2.2.11版本中的dirmngr存在跨站请求伪造漏洞。远程攻击者可利用该漏洞获取信息和造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A