Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
12037.7%CRITICAL

Related CVEs

2
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-65318When using the attachment interaction functionality, Canary Mail 5.1.40 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software.CRITICAL9.137.7%Dec 16, 2025
CVE-2021-26911core/imap/MCIMAPSession.cpp in Canary Mail before 3.22 has Missing SSL Certificate Validation for IMAP in STARTTLS mode.HIGH7.4Feb 17, 2021