Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
K-9 Mail v5.600 can include the original quoted HTML code of a specially crafted, benign looking, email within (digitally signed) reply messages. The quoted part can contain conditional statements that show completely different text if opened in a different email client. This can be abused by an attacker to obtain valid S/MIME or PGP signatures for arbitrary content to be displayed to a third party. NOTE: the vendor states "We don't plan to take any action because of this."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
K-9 Mail 安全特征问题漏洞
Vulnerability Description
K-9 Mail是一款基于Android平台的开源电子邮件客户端应用程序。 K-9 Mail v5.600版本中存在安全漏洞。攻击者可利用该漏洞获取有效的S/MIME或PGP签名。
CVSS Information
N/A
Vulnerability Type
N/A