CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-26986

An issue in China Mobile OA Mailbox PC v2.9.23 allows remote attackers to execute arbitrary commands on a victim host via user interaction with a crafted EML file sent to their OA mailbox.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.0%

CVSS Severity

CVSS v3 Score 7.8

References

https://gist.github.com/YZLCQX/0da0a438292a5479470c52dad8210462
https://github.com/YZLCQX/Mailbox-remote-command-execution
https://gist.github.com/YZLCQX/0da0a438292a5479470c52dad8210462
https://github.com/YZLCQX/Mailbox-remote-command-execution

Products affected by CVE-2023-26986

Chinamobileltd » Oa Mailbox Pc » Version: 2.9.23

cpe:2.3:a:chinamobileltd:oa_mailbox_pc:2.9.23

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26986

Products

Pricing

Contact Us