Unrated severityNVD Advisory· Published Aug 1, 2019· Updated Aug 4, 2024
CVE-2019-3890
CVE-2019-3890
Description
It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting to a fake server without the user noticing the difference.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- The Gnome Project/evolution-ewsv5Range: 3.31.3
Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2019:3699mitrevendor-advisoryx_refsource_REDHAT
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
- gitlab.gnome.org/GNOME/evolution-ews/issues/27mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.