[SYSS-2019-048] Improper Authorization (CWE-285) in REDDOXX MailDepot (CVE-2019-19200)

Posted by Micha Borrmann on Oct 02

Advisory ID: SYSS-2019-048
Product: MailDepot
Manufacturer: REDDOXX GmbH
Affected Version(s): 2032 SP2 (2.2.1242)
Tested Version(s): 2032 SP2 (2.2.1242)
Vulnerability Type: Improper Authorization (CWE-285)
Risk Level: High
Solution Status: Fixed
Manufacturer Notification: 2019-11-19
Solution Date: 2020-06-09
Public Disclosure: 2020-10-02…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source