CVE-2021-38372 log

Source
Severity Medium
Remote Yes
Type Man-in-the-middle
Description
In KDE Trojita 0.7, man-in-the-middle attackers can create new folders because untagged responses from an IMAP server are accepted before STARTTLS.
Group Package Affected Fixed Severity Status Ticket
AVG-2273 trojita 0.7-5 Medium Vulnerable
References
https://bugs.kde.org/show_bug.cgi?id=432353
https://nostarttls.secvuln.info/