Medium severity5.5NVD Advisory· Published Apr 26, 2022· Updated Jun 17, 2026
CVE-2022-28218
CVE-2022-28218
Description
An issue was discovered in CipherMail Webmail Messenger 1.1.1 through 4.1.4. A local attacker could access secret keys (found in a Roundcube configuration file) that are used to protect Webmail user passwords and two-factor authentication (2FA).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CipherMail/Webmail Messengerdescription
- Range: 1.1.1 - 4.1.4
Patches
Vulnerability mechanics
References
3- ciphermail.comnvdVendor Advisory
- www.ciphermail.com/webmail-release-notes.htmlnvdRelease NotesVendor Advisory
- lists.ciphermail.com/hyperkitty/list/security%40lists.ciphermail.com/thread/WRWHQUACXWXQA42KXXQQ6EEP6SBBM5BM/nvd
News mentions
0No linked articles in our index yet.