PGP Desktop for Windows 10.0.2
Approved changes feed: RSS · Atom
cpe:2.3:a:pgp:desktop_for_windows:10.0.2:*:*:*:*:*:*:*
part: a version: 10.0.2 update: *
| Vendor | Pgp (c61d4616-3f35-5bb7-97da-6940a76b3c63) |
|---|---|
| Product | Desktop For Windows (3a64f9a2-319e-58c2-b843-235fee09e29b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2010-3618 |
vulnerable | 2026-06-03 14:30:32.388960 |
Details available
PGP Desktop 10.0.x before 10.0.3 SP2 and 10.1.0 before 10.1.0 SP1 does not properly implement the "Decrypt/Verify File via Right-Click" functionality for multi-packet OpenPGP messages that represent multi-message input, which allows remote attackers to spoof signed data by concatenating an additional message to the end of a legitimately signed message, related to a "piggy-back" or "unsigned data injection" issue.
Published: 2010-11-20T21:00:00.000Z
Updated: 2024-08-07T03:18:53.018Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.