CVE-2024-23655
- EPSS 0.23%
- Veröffentlicht 25.01.2024 20:15:40
- Zuletzt bearbeitet 21.11.2024 08:58:06
Tuta is an encrypted email service. Starting in version 3.118.12 and prior to version 3.119.10, an attacker is able to send a manipulated email so that the user can no longer use the app to get access to received emails. By sending a manipulated emai...
CVE-2024-23330
- EPSS 0.16%
- Veröffentlicht 23.01.2024 18:15:19
- Zuletzt bearbeitet 21.11.2024 08:57:31
Tuta is an encrypted email service. In versions prior to 119.10, an attacker can attach an image in a html mail which is loaded from external resource in the default setting, which should prevent loading of external resources. When displaying emails ...
CVE-2023-46116
- EPSS 0.87%
- Veröffentlicht 15.12.2023 14:15:14
- Zuletzt bearbeitet 21.11.2024 08:27:54
Tutanota (Tuta Mail) is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the `file:` URL scheme, which can be used by malicious actors to gain code exe...