CVE-2025-2545 Information

Description

Vulnerability in Best Practical Solutions LLC’s Request Tracker v5.0.7 where the Triple DES (3DES) cryptographic algorithm is used within SMIME code to encrypt S/MIME emails. Triple DES is considered obsolete and insecure due to its susceptibility to birthday attacks which could compromise the confidentiality of encrypted messages.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/cryptographic-algorithm-not-recommended-request-tracker-best-practical