OpenPGP Signature Spoofing Vulnerability in GNOME Evolution

OpenPGP Signature Spoofing Vulnerability in GNOME Evolution

CVE-2018-15587 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.

Learn more about our Web Application Penetration Testing UK.