Lucene search

[email protected]NVD:CVE-2024-1619

HistoryFeb 29, 2024 - 10:15 a.m.

CVE-2024-1619

2024-02-2910:15:06

CWE-74

[email protected]

web.nvd.nist.gov

kaspersky

security issue

linux mail server

unauthorized actions

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

6.1

Confidence

High

EPSS

Percentile

9.0%

JSON

Kaspersky has fixed a security issue in the Kaspersky Security 8.0 for Linux Mail Server. The issue was that an attacker could potentially force an administrator to click on a malicious link to perform unauthorized actions.

References

support.kaspersky.com/vulnerability/list-of-advisories/12430#010224

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

6.1

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-1619

cve1 vulnrichment1 cvelist1 prion1