TitanHQ SpamTitan 7.00

CPE Details

TitanHQ SpamTitan 7.00
titanhq
spamtitan
7.00
2019-11-19
14h39 +00:00
2019-11-19
14h39 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:titanhq:spamtitan:7.00:*:*:*:*:*:*:*

Informations

Vendor

titanhq

Product

spamtitan

Version

7.00

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-35658 2020-12-23 01h10 +00:00 SpamTitan before 7.09 allows attackers to tamper with backups, because backups are not encrypted.
5.3
Medium
CVE-2019-6800 2019-06-05 16h05 +00:00 In TitanHQ SpamTitan through 7.03, a vulnerability exists in the spam rule update function. Updates are downloaded over HTTP, including scripts which are subsequently executed with root permissions. An attacker with a privileged network position is trivially able to inject arbitrary commands.
7.5
High
CVE-2018-15136 2019-01-29 22h00 +00:00 TitanHQ SpamTitan before 7.01 has Improper input validation. This allows internal attackers to bypass the anti-spam filter to send malicious emails to an entire organization by modifying the URL requests sent to the application.
5.3
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.