Back to CVE List

CVE-2026-62642

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
4.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Vulnerability Description

In Roundcube Webmail before 1.6.17 and 1.7.x before 1.7.2, an infinite loop was discovered in the TNEF decoder, which may lead to denial of service upon opening an email with a TNEF attachment.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-835
Source
NVD
Vendor
Roundcube
Product
Webmail

External References

Discussion (0)

Add Comment

No comments yet. Be the first!