| Max CVSS | 4.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-15237 | 4.3 |
Roundcube Webmail through 1.3.9 mishandles Punycode xn-- domain names, leading to homograph attacks.
|
08-03-2023 - 01:11 | 20-08-2019 - 01:15 | |
| CVE-2019-10740 | 4.3 |
In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This
|
03-05-2022 - 14:49 | 07-04-2019 - 15:29 | |
| CVE-2019-10740 | 4.3 |
In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This
|
24-09-2020 - 18:15 | 07-04-2019 - 15:29 |