← back
CVE-2017-17689

CVE-2017-17689

EPSS 4.2%
The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://efail.dehttps://news.ycombinator.com/item?id=17066419https://pastebin.com/gNCc8aYmhttps://twitter.com/matthew_d_green/status/996371541591019520https://www.synology.com/support/security/Synology_SA_18_22http://www.securityfocus.com/bid/104165