NVD脆弱性詳細

Exploit、PoC検索

NVD脆弱性検索トップ

->

NVD脆弱性詳細

CVE-2024-42010

概要	mod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a insufficiently filters Cascading Style Sheets (CSS) token sequences in rendered e-mail messages, allowing a remote attacker to obtain sensitive information.
公表日	2024年8月6日4:15
登録日	2024年8月6日12:00
最終更新日	2024年8月7日1:30

関連情報、対策とツール

No	URL	refsource	タグ
1	https://github.com/roundcube/roundcubemail/releases
2	https://sonarsource.com/blog/government-emails-at-risk-critical-cross-site-scripting-vulnerability-in-roundcube-webmail/
3	https://github.com/roundcube/roundcubemail/releases/tag/1.5.8
4	https://github.com/roundcube/roundcubemail/releases/tag/1.6.8
5	https://roundcube.net/news/2024/08/04/security-updates-1.6.8-and-1.5.8

共通脆弱性一覧