CVE-2017-9518

CVE-2017-9518

EPSS 0.5%

atmail before 7.8.0.2 has CSRF, allowing an attacker to change the SMTP hostname and hijack all emails.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://help.atmail.com/hc/en-us/articles/115007169147-Minor-Update-7-8-0-2-ActiveSync-2-3-6