Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2017-16651

Roundcube | Roundcube WebmailAdded 2021-11-03Remediation Deadline 2022-05-03

Roundcube Webmail File Disclosure Vulnerability

Roundcube Webmail contains a file disclosure vulnerability caused by insufficient input validation in conjunction with file-based attachment plugins, which are used by default.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-552

References