Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2021-37746
- EPSS 0.48%
- Published 30.07.2021 15:15:09
- Last modified 21.11.2024 06:15:51
textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click.
8.8
CVE-2017-17517
- EPSS 0.55%
- Published 14.12.2017 16:29:00
- Last modified 20.04.2025 01:37:25
libsylph/utils.c in Sylpheed through 3.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL.
1