Sylpheed Project Sylpheed — known CVE vulnerabilities
Every CVE whose affected-product data names Sylpheed Project Sylpheed, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-17517 — CVSS 8.8 (high): libsylph/utils.c in Sylpheed through 3.6 does not validate strings before launching the program specified by the BROWSER environment…
CVE-2021-37746 — CVSS 6.1 (medium): textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks…