CVE-2011-3201: GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the…

medium4.3CVSS 3.1

AVNACMAuNCPINAN

GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the file to the email.

Affected

50 ranges· showing 25

Vendor	Product	Version range	Fixed in
debian	evolution	—	—
gnome	evolution	<= 3.0.3	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—
gnome	evolution	—	—

CVSS provenance

nvd4.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N

osv4.3MEDIUM