CVE-2018-15587

Published February 11th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.

RUB-NDS/Johnny-You-Are-Fired

Artifacts for the USENIX publication.

GitHub