MidnightBSD

Advisories for mailpile

CVE-2018-20954 MEDIUM

The "Security and Privacy" Encryption feature in Mailpile before 1.0.0rc4 does not exclude disabled, revoked, and expired keys.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mailpile mailpile 0.5.0
mailpile mailpile 0.5.1
mailpile mailpile 1.0.0
mailpile mailpile 0.5.2