
Find real vulnerabilities before they ship
KDE KMail does not encrypt attachments in emails when "automatic encryption" is enabled, which allows remote attackers to obtain sensitive information by sniffing the network.
Base Score
5.9| Base Score | 5.9 |
|---|---|
| Vector String | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Base Severity | Medium |
| Version | 3.0 |
| Attack Vector (AV) | NETWORK |