Trojita Project Trojita — known CVE vulnerabilities
Every CVE whose affected-product data names Trojita Project Trojita, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-15047 — CVSS 5.9 (medium): MSA/SMTP.cpp in Trojita before 0.8 ignores certificate-verification errors, which allows man-in-the-middle attackers to spoof SMTP servers.
CVE-2014-2567 — CVSS 4.3 (medium): The OpenConnectionTask::handleStateHelper function in Imap/Tasks/OpenConnectionTask.cpp in Trojita before 0.4.1 allows man-in-the-middle…
CVE-2019-10734 — CVSS 4.3 (medium): In KDE Trojita 0.7, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart…