Security News > 2016 > December > Critical Vulnerability Patched in Roundcube Webmail (Threatpost)

Critical Vulnerability Patched in Roundcube Webmail (Threatpost)

2016-12-07 15:00

Open source webmail provider Roundcube was patched against a vulnerability that could be trivially exploited to run code on servers or access email accounts.

News URL

http://threatpost.com/critical-vulnerability-patched-in-roundcube-webmail/122297/

#critical #threatpost #vulnerability

Related news

Urgent: Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites (source)
Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access (source)
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console (source)
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection (source)
BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS Products (source)
BeyondTrust fixes critical vulnerability in remote access, support solutions (CVE-2024-12356) (source)
Hackers Exploiting Critical Fortinet EMS Vulnerability to Deploy Remote Access Tools (source)
Critical SQL Injection Vulnerability in Apache Traffic Control Rated 9.9 CVSS — Patch Now (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Roundcube		3	0	27	12	5	44

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.