CVE-2011-3201
EPSS 0.82%
Description
GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the file to the email.
How to fix CVE-2011-3201
No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.
- Debian/evolution—no fix listed
Is CVE-2011-3201 being exploited?
Low — EPSS is 0.8%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0