Critical severity10.0NVD Advisory· Published Dec 20, 2018· Updated Jun 17, 2026
CVE-2018-1000831
CVE-2018-1000831
Description
K9Mail version <= v5.600 contains a XML External Entity (XXE) vulnerability in WebDAV response parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via malicious WebDAV server or intercept the reponse of a valid WebDAV server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Patches
Vulnerability mechanics
References
2- 0dd.zone/2018/10/28/k9mail-XXE-MitM/nvdThird Party Advisory
- github.com/k9mail/k-9/issues/3681nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.