Every CVE whose affected-product data names Securenvoy Securmail, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2018-7702 — CVSS 9.1 (critical): SecurEnvoy SecurMail before 9.2.501 allows remote attackers to spoof transmission of arbitrary e-mail messages, resend e-mail messages to…
CVE-2020-13376 — CVSS 9.0 (critical): SecurEnvoy SecurMail 9.3.503 allows attackers to upload executable files and achieve OS command execution via a crafted SecurEnvoyReply…
CVE-2018-7705 — CVSS 8.1 (high): Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read e-mail messages to…
CVE-2018-7704 — CVSS 6.5 (medium): SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via the option1 parameter in a…
CVE-2018-7701 — CVSS 6.5 (medium): Multiple cross-site request forgery (CSRF) vulnerabilities in SecurEnvoy SecurMail before 9.2.501 allow remote attackers to hijack the…
CVE-2018-7706 — CVSS 6.5 (medium): Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail…
CVE-2018-7707 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or…
CVE-2018-7703 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or…