Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

pgp pgp 7.0 vulnerabilities and exploits

(subscribe to this query)
4.6
CVSSv2
CVE-2001-0435
The split key mechanism used by PGP 7.0 allows a key share holder to obtain access to the entire key by setting the "Cache passphrase while logged on" option and capturing the passphrases of other share holders as they authenticate.
Pgp Pgp 7.0
2.1
CVSSv2
CVE-2001-0265
ASCII Armor parser in Windows PGP 7.0.3 and previous versions allows malicious users to create files in arbitrary locations via a malformed ASCII armored file.
Pgp PgpPgp Pgp 5
2.1
CVSSv2
CVE-2002-1696
Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked,...
Pgp Personal Privacy 7.0Pgp Personal Privacy 7.0.3Pgp Personal Privacy 7.0.4
10
CVSSv2
CVE-2001-1252
Network Associates PGP Keyserver 7.0 allows remote malicious users to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs (1) console, (2) cs, (3) multi_config and (4) directory.
Pgp Keyserver 7.0Pgp Keyserver 7.0.1
7.5
CVSSv2
CVE-2001-1320
Network Associates PGP Keyserver 7.0 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suite.
Pgp Keyserver 7.0
3.3
CVSSv2
CVE-2020-10759
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or...
Redhat Enterprise Linux 7.0Redhat Enterprise Linux 8.0
4.3
CVSSv2
CVE-2018-12373
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9.
Mozilla ThunderbirdRedhat Enterprise Linux 6.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux 7.6Redhat Enterprise Linux 7.5Redhat Enterprise Linux 7.0Redhat Enterprise Linux Workstation 7.0Debian Debian Linux 9.0Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 17.10Canonical Ubuntu Linux 18.04
4
CVSSv2
CVE-2021-36096
Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions; 8.0.x version 8.0.15 and prior v...
Otrs Otrs
4
CVSSv2
CVE-2021-21440
Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.27 and prior versions; 8.0.x version 8.0.14 and prior v...
Otrs Otrs
9
CVSSv2
CVE-2017-16921
In OTRS 6.0.x up to and including 6.0.1, OTRS 5.0.x up to and including 5.0.24, and OTRS 4.0.x up to and including 4.0.26, an attacker who is logged into OTRS as an agent can manipulate form parameters (related to PGP) and execute arbitrary shell commands with the permissions of ...
Otrs Otrs 4.0.24Otrs Otrs 4.0.22Otrs Otrs 4.0.15Otrs Otrs 4.0.13Otrs Otrs 4.0.6Otrs Otrs 4.0.4Otrs Otrs 5.0.23Otrs Otrs 5.0.21Otrs Otrs 5.0.14Otrs Otrs 5.0.12Otrs Otrs 5.0.5Otrs Otrs 5.0.3Otrs Otrs 5.0.0Otrs Otrs 6.0.0Otrs Otrs 4.0.20Otrs Otrs 4.0.19Otrs Otrs 4.0.18Otrs Otrs 4.0.17Otrs Otrs 4.0.16Otrs Otrs 4.0.3Otrs Otrs 4.0.2Otrs Otrs 4.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook