All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2020-12641
NONEKEVpublish date unavailable
CVSS / 10
// description
Roundcube Webmail contains an remote code execution vulnerability that allows attackers to execute code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2023-06-22 00:00 UTC