← Voltar para CVEs
CVE-2012-6580
N/ADescricao
Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, does not ensure that the UI labels unencrypted messages as unencrypted, which might make it easier for remote attackers to spoof details of a message's origin or interfere with encryption-policy auditing via an e-mail message to a queue's address.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado7/24/2013
Ultima modificacao4/29/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
bestpractical:request_tracker
Fraquezas (CWE)
CWE-310
Referencias
http://lists.bestpractical.com/pipermail/rt-announce/2012-October/000212.html(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.