CVE-2018-15586

Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages using a PGP/INLINE signature wrapped within a specially crafted multipart HTML email.
Configurations

Configuration 1

cpe:2.3:a:enigmail:enigmail:*:*:*:*:*:*:*:*

Information

Published : 2019-02-11 05:29

Updated : 2019-05-16 06:29


NVD link : CVE-2018-15586

Mitre link : CVE-2018-15586

Products Affected
No products.
CWE
CWE-347

Improper Verification of Cryptographic Signature