Vulnerabilities > KDE > Kmail > 5.3.0

DATE CVE VULNERABILITY TITLE RISK
2020-04-17 CVE-2020-11880 Unspecified vulnerability in KDE Kmail
An issue was discovered in KDE KMail before 19.12.3.
network
low complexity
kde
6.4
6.4
2017-06-13 CVE-2017-9604 Missing Encryption of Sensitive Data vulnerability in KDE Kmail and Messagelib
KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.
network
low complexity
kde CWE-311
5.0
5.0
2016-12-23 CVE-2016-7968 Code Injection vulnerability in KDE Kmail 4.4.0/5.2.3/5.3.0
KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled.
network
low complexity
kde CWE-94
7.5
7.5
2016-12-23 CVE-2016-7967 Improper Access Control vulnerability in KDE Kmail 4.4.0/5.2.3/5.3.0
KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled.
network
kde CWE-284
5.8
5.8