Vulnerabilities > Trojita Project > Trojita > 0.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-06-25 | CVE-2020-15047 | Improper Certificate Validation vulnerability in Trojita Project Trojita MSA/SMTP.cpp in Trojita before 0.8 ignores certificate-verification errors, which allows man-in-the-middle attackers to spoof SMTP servers. | 4.3 |
2014-03-21 | CVE-2014-2567 | Information Exposure vulnerability in Trojita Project Trojita The OpenConnectionTask::handleStateHelper function in Imap/Tasks/OpenConnectionTask.cpp in Trojita before 0.4.1 allows man-in-the-middle attackers to trigger use of cleartext for saving a message into a (1) sent or (2) draft folder via a PREAUTH response that prevents later use of the STARTTLS command. | 4.3 |