CVE-2020-12641

Roundcube Webmail Remote Code Execution Vulnerability

Beschreibung

Roundcube Webmail contains an remote code execution vulnerability that allows attackers to execute code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.

Schweregrad: CRITICAL

CVSS-Score: 9.8

Hersteller: Roundcube

Produkt: Roundcube Webmail