Insecure Certificate Verification in msmtp 1.8.2 and mpop 1.4.3

Insecure Certificate Verification in msmtp 1.8.2 and mpop 1.4.3

CVE-2019-8337 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

In msmtp 1.8.2 and mpop 1.4.3, when tls_trust_file has its default configuration, certificate-verification results are not properly checked.

Learn more about our Web Application Penetration Testing UK.