CVE-2019-12269

Enigmail before 2.0.11 allows PGP signature spoofing: for an inline PGP message, an attacker can cause the product to display a "correctly signed" message indication, but display different unauthenticated text.
Configurations

Configuration 1

cpe:2.3:a:enigmail:enigmail:*:*:*:*:*:*:*:*

Information

Published : 2019-05-21 08:29

Updated : 2019-06-24 06:15


NVD link : CVE-2019-12269

Mitre link : CVE-2019-12269

Products Affected
No products.
CWE
CWE-347

Improper Verification of Cryptographic Signature