CVE-2018-15587
published 2019-02-11CVE-2018-15587: GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid…
medium6.5CVSS 3.0
AVNACLPRNUIRSUCNIHAN
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | evolution | < evolution 3.30.5-1.1 (bookworm) | evolution 3.30.5-1.1 (bookworm) |
| gnome | evolution | <= 3.28.2 | — |
| gnome | evolution | >= 0 < 3.30.5-1.1 | 3.30.5-1.1 |
| gnome | evolution | >= 0 < 3.30.5-1.1 | 3.30.5-1.1 |
| gnome | evolution | >= 0 < 3.30.5-1.1 | 3.30.5-1.1 |
| gnome | evolution | >= 0 < 3.30.5-1.1 | 3.30.5-1.1 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
osv6.5MEDIUM