VDB
CISA-2024-55196
CISA-2024-55196
PUBLISHED
CVSS 7.5 HIGH
Reported by mitre · Published December 19, 2024
Insufficiently Protected Credentials in the Mail Server Configuration in GoPhish v0.12.1 allows an attacker to access cleartext passwords for the configured IMAP and SMTP servers.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Timeline
- Dec 19, 2024 CVE Published
- Jan 2, 2025 CVE Updated