Arbitrary Email Message Reading Vulnerability in SecurEnvoy SecurMail

Arbitrary Email Message Reading Vulnerability in SecurEnvoy SecurMail

CVE-2018-7704 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via the option1 parameter in a reply action to secmail/getmessage.exe.

Learn more about our User Device Pen Test.