CNNVD-202506-2849 Information

CNNVD ID

CNNVD-202506-2849

Related CVE

CVE-2025-52557

• CNNVD Published: 2025-06-21

Description (Chinese)

Zero是Zero开源的一个电子邮件应用程序。 Zero 0.8版本存在安全漏洞，该漏洞源于邮件清理不当，可能导致会话劫持。

Description (English)

Zero is an e-mail application from Zero open source. There is a security loophole in version Zero 0.8, which stems from inappropriate mail clean-up and may lead to the hijacking of conversations.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Zero

Published

2025-06-21

Last Modified

2026-02-24

References

https://github.com/Mail-0/Zero/commit/48d1df65b62c9c57897b72b241081f447140342f https://github.com/Mail-0/Zero/pull/1386 https://github.com/Mail-0/Zero/security/advisories/GHSA-34gh-g567-hq85