Unrated severityNVD Advisory· Published Jul 8, 2019· Updated Aug 4, 2024
CVE-2019-12925
CVE-2019-12925
Description
MailEnable Enterprise Premium 10.23 was vulnerable to multiple directory traversal issues, with which authenticated users could add, remove, or potentially read files in arbitrary folders accessible by the IIS user. This could lead to reading other users' credentials including those of SYSADMIN accounts, reading other users' emails, or adding emails or files to other users' accounts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- MailEnable/MailEnable Enterprise Premiumdescription
- Range: =10.23
Patches
Vulnerability mechanics
References
2- www.mailenable.com/Premium-ReleaseNotes.txtmitrex_refsource_CONFIRM
- www.nccgroup.trust/uk/our-research/technical-advisory-multiple-vulnerabilities-in-mailenable/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.