Vulnerabilities (CVE)

Filtered by vendor K9mail Subscribe
Filtered by product K-9 Mail
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-1000831 1 K9mail 1 K-9 Mail 2024-11-21 7.5 HIGH 10.0 CRITICAL
K9Mail version <= v5.600 contains a XML External Entity (XXE) vulnerability in WebDAV response parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via malicious WebDAV server or intercept the reponse of a valid WebDAV server.