CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Enigmail: >> Enigmail >> 1.7 Security Vulnerabilities

CVE-2014-5369

Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption is enabled and only BCC recipients are specified, which allows remote attackers to obtain sensitive information by sniffing the network.

CVSS Score

4.3

EPSS Score

0.006

Published

2014-09-08

Page 2

Vulnerabilities

Vulnerable Software

Enigmail: >> Enigmail >> 1.7 Security Vulnerabilities

Products

Pricing

Contact Us