Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-ur1a-7tdn-h3hu

Summary In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the plaintext of the encrypted message part(s) back to the attacker.

Aliases

alias	CVE-2019-10740

Fixed_packages

url	pkg:deb/debian/roundcube@1.3.10%2Bdfsg.1-1?distro=trixie
purl	pkg:deb/debian/roundcube@1.3.10%2Bdfsg.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.3.10%252Bdfsg.1-1%3Fdistro=trixie

url pkg:deb/debian/roundcube@1.3.17%2Bdfsg.1-1~deb10u2

purl pkg:deb/debian/roundcube@1.3.17%2Bdfsg.1-1~deb10u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14vp-t71a-4bh1

vulnerability	VCID-2eyy-k49d-m3af

vulnerability	VCID-2hap-9mqs-v3b8

vulnerability	VCID-2k4q-26tk-j3gx

vulnerability	VCID-2nb2-9vgp-tqg9

vulnerability	VCID-36et-26h7-pke7

vulnerability	VCID-3kyu-tx4q-p3aq

vulnerability	VCID-4yzj-hrqv-vbcp

vulnerability	VCID-5yts-xnha-4bf3

vulnerability	VCID-79me-pjdn-ykgq

vulnerability	VCID-7nn6-aywu-z7g8

vulnerability	VCID-8vmm-1hvf-17ap

vulnerability	VCID-8xf2-hjfv-hybh

vulnerability	VCID-9der-5csu-nbbq

vulnerability	VCID-9uv1-gqq7-3kc9

vulnerability	VCID-cjkd-2jr6-n7as

vulnerability	VCID-ck88-1urs-2kes

vulnerability	VCID-cnkc-vcp7-6kcw

vulnerability	VCID-ddfq-28qm-2fbn

vulnerability	VCID-gh6k-19h8-fqbf

vulnerability	VCID-hg1a-vx5c-hue3

vulnerability	VCID-jck5-xymf-s3bh

vulnerability	VCID-jqs5-8ct7-wfgk

vulnerability	VCID-kyxz-v3sj-w3cw

vulnerability	VCID-m4yc-ms54-zyhv

vulnerability	VCID-ncbg-6m11-3qan

vulnerability	VCID-qwak-6wgy-wfgs

vulnerability	VCID-rc91-j3kf-zfch

vulnerability	VCID-s6p1-rf35-euhy

vulnerability	VCID-u8a4-4pe2-9kcb

vulnerability	VCID-ub6x-9dku-c7fk

vulnerability	VCID-vehj-ytsm-kqgz

vulnerability	VCID-vtz8-zmp4-xbdh

vulnerability	VCID-x9j7-98zt-6ygt

vulnerability	VCID-xssa-fwbx-kybq

vulnerability	VCID-ybv7-hqmj-nbgr

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.3.17%252Bdfsg.1-1~deb10u2

url pkg:deb/debian/roundcube@1.4.15%2Bdfsg.1-1%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/roundcube@1.4.15%2Bdfsg.1-1%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-rdb5-bbvn-7fcq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.4.15%252Bdfsg.1-1%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/roundcube@1.6.5%2Bdfsg-1%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/roundcube@1.6.5%2Bdfsg-1%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.6.5%252Bdfsg-1%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/roundcube@1.6.13%2Bdfsg-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/roundcube@1.6.13%2Bdfsg-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.6.13%252Bdfsg-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/roundcube@1.6.15%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/roundcube@1.6.15%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.6.15%252Bdfsg-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/roundcube@0.3.1-6

purl pkg:deb/debian/roundcube@0.3.1-6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14vp-t71a-4bh1

vulnerability	VCID-1aph-76b1-eyhv

vulnerability	VCID-23v8-vzqs-j3f6

vulnerability	VCID-2eyy-k49d-m3af

vulnerability	VCID-2hap-9mqs-v3b8

vulnerability	VCID-2k4q-26tk-j3gx

vulnerability	VCID-2nb2-9vgp-tqg9

vulnerability	VCID-36et-26h7-pke7

vulnerability	VCID-3kyu-tx4q-p3aq

vulnerability	VCID-489e-j7sj-5kgv

vulnerability	VCID-4yzj-hrqv-vbcp

vulnerability	VCID-53mq-nmxf-eug3

vulnerability	VCID-5yts-xnha-4bf3

vulnerability	VCID-76t7-q4pa-gkct

vulnerability	VCID-79me-pjdn-ykgq

vulnerability	VCID-7hh1-8grz-7fa9

vulnerability	VCID-7nn6-aywu-z7g8

vulnerability	VCID-8keg-wbj1-8ua9

vulnerability	VCID-8vmm-1hvf-17ap

vulnerability	VCID-8xf2-hjfv-hybh

vulnerability	VCID-9der-5csu-nbbq

vulnerability	VCID-9ktu-55q4-3kau

vulnerability	VCID-9uqr-ph81-gfef

vulnerability	VCID-9uv1-gqq7-3kc9

vulnerability	VCID-brmp-djyb-q3b7

vulnerability	VCID-c196-941x-8kfj

vulnerability	VCID-c4ys-1wzp-vqej

vulnerability	VCID-cjkd-2jr6-n7as

vulnerability	VCID-ck88-1urs-2kes

vulnerability	VCID-cnkc-vcp7-6kcw

vulnerability	VCID-ddfq-28qm-2fbn

vulnerability	VCID-dzu5-531f-qqgy

vulnerability	VCID-ekhg-mmjb-v3c3

vulnerability	VCID-fuh5-bwaq-yyfk

vulnerability	VCID-g7dn-kxs3-p7bx

vulnerability	VCID-gh6k-19h8-fqbf

vulnerability	VCID-hg1a-vx5c-hue3

vulnerability	VCID-j29t-cw2h-mfd8

vulnerability	VCID-ja7n-zgpp-dfh4

vulnerability	VCID-jck5-xymf-s3bh

vulnerability	VCID-jqs5-8ct7-wfgk

vulnerability	VCID-kch8-wrzv-bfdm

vulnerability	VCID-kep3-256k-fqdm

vulnerability	VCID-kf54-x29g-63fb

vulnerability	VCID-kyxz-v3sj-w3cw

vulnerability	VCID-m4yc-ms54-zyhv

vulnerability	VCID-ncbg-6m11-3qan

vulnerability	VCID-qfyq-umv5-e7h1

vulnerability	VCID-qr2m-f4yw-qqa5

vulnerability	VCID-qwak-6wgy-wfgs

vulnerability	VCID-r1hb-f5nm-ykhk

vulnerability	VCID-rc91-j3kf-zfch

vulnerability	VCID-rthq-fqk2-yydk

vulnerability	VCID-s6p1-rf35-euhy

vulnerability	VCID-spk8-q616-rkda

vulnerability	VCID-tmch-gj6d-tyfq

vulnerability	VCID-ts1p-pw9v-cbh3

vulnerability	VCID-u8a4-4pe2-9kcb

vulnerability	VCID-ub6x-9dku-c7fk

vulnerability	VCID-ur1a-7tdn-h3hu

vulnerability	VCID-vehj-ytsm-kqgz

vulnerability	VCID-vtz8-zmp4-xbdh

vulnerability	VCID-x9j7-98zt-6ygt

vulnerability	VCID-xssa-fwbx-kybq

vulnerability	VCID-ybv7-hqmj-nbgr

vulnerability	VCID-yerh-ssat-abah

vulnerability	VCID-yv5x-shsw-57cv

vulnerability	VCID-z3kp-p8ch-myhz

vulnerability	VCID-z7fn-ubfx-g3em

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@0.3.1-6

url pkg:deb/debian/roundcube@0.3.1-6%2Bdeb6u1

purl pkg:deb/debian/roundcube@0.3.1-6%2Bdeb6u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14vp-t71a-4bh1

vulnerability	VCID-1aph-76b1-eyhv

vulnerability	VCID-23v8-vzqs-j3f6

vulnerability	VCID-2eyy-k49d-m3af

vulnerability	VCID-2hap-9mqs-v3b8

vulnerability	VCID-2k4q-26tk-j3gx

vulnerability	VCID-2nb2-9vgp-tqg9

vulnerability	VCID-36et-26h7-pke7

vulnerability	VCID-3kyu-tx4q-p3aq

vulnerability	VCID-489e-j7sj-5kgv

vulnerability	VCID-4yzj-hrqv-vbcp

vulnerability	VCID-53mq-nmxf-eug3

vulnerability	VCID-5yts-xnha-4bf3

vulnerability	VCID-76t7-q4pa-gkct

vulnerability	VCID-79me-pjdn-ykgq

vulnerability	VCID-7hh1-8grz-7fa9

vulnerability	VCID-7nn6-aywu-z7g8

vulnerability	VCID-8keg-wbj1-8ua9

vulnerability	VCID-8vmm-1hvf-17ap

vulnerability	VCID-8xf2-hjfv-hybh

vulnerability	VCID-9der-5csu-nbbq

vulnerability	VCID-9ktu-55q4-3kau

vulnerability	VCID-9uqr-ph81-gfef

vulnerability	VCID-9uv1-gqq7-3kc9

vulnerability	VCID-brmp-djyb-q3b7

vulnerability	VCID-c196-941x-8kfj

vulnerability	VCID-c4ys-1wzp-vqej

vulnerability	VCID-cjkd-2jr6-n7as

vulnerability	VCID-ck88-1urs-2kes

vulnerability	VCID-cnkc-vcp7-6kcw

vulnerability	VCID-ddfq-28qm-2fbn

vulnerability	VCID-dzu5-531f-qqgy

vulnerability	VCID-ekhg-mmjb-v3c3

vulnerability	VCID-fuh5-bwaq-yyfk

vulnerability	VCID-g7dn-kxs3-p7bx

vulnerability	VCID-gh6k-19h8-fqbf

vulnerability	VCID-hg1a-vx5c-hue3

vulnerability	VCID-j29t-cw2h-mfd8

vulnerability	VCID-ja7n-zgpp-dfh4

vulnerability	VCID-jck5-xymf-s3bh

vulnerability	VCID-jqs5-8ct7-wfgk

vulnerability	VCID-kch8-wrzv-bfdm

vulnerability	VCID-kep3-256k-fqdm

vulnerability	VCID-kf54-x29g-63fb

vulnerability	VCID-kyxz-v3sj-w3cw

vulnerability	VCID-m4yc-ms54-zyhv

vulnerability	VCID-ncbg-6m11-3qan

vulnerability	VCID-qfyq-umv5-e7h1

vulnerability	VCID-qr2m-f4yw-qqa5

vulnerability	VCID-qwak-6wgy-wfgs

vulnerability	VCID-r1hb-f5nm-ykhk

vulnerability	VCID-rc91-j3kf-zfch

vulnerability	VCID-rthq-fqk2-yydk

vulnerability	VCID-s6p1-rf35-euhy

vulnerability	VCID-spk8-q616-rkda

vulnerability	VCID-tmch-gj6d-tyfq

vulnerability	VCID-ts1p-pw9v-cbh3

vulnerability	VCID-u8a4-4pe2-9kcb

vulnerability	VCID-ub6x-9dku-c7fk

vulnerability	VCID-ur1a-7tdn-h3hu

vulnerability	VCID-vehj-ytsm-kqgz

vulnerability	VCID-vtz8-zmp4-xbdh

vulnerability	VCID-x9j7-98zt-6ygt

vulnerability	VCID-xssa-fwbx-kybq

vulnerability	VCID-ybv7-hqmj-nbgr

vulnerability	VCID-yerh-ssat-abah

vulnerability	VCID-yv5x-shsw-57cv

vulnerability	VCID-z3kp-p8ch-myhz

vulnerability	VCID-z7fn-ubfx-g3em

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@0.3.1-6%252Bdeb6u1

url pkg:deb/debian/roundcube@0.7.2-9%2Bdeb7u2

purl pkg:deb/debian/roundcube@0.7.2-9%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14vp-t71a-4bh1

vulnerability	VCID-23v8-vzqs-j3f6

vulnerability	VCID-2eyy-k49d-m3af

vulnerability	VCID-2hap-9mqs-v3b8

vulnerability	VCID-2k4q-26tk-j3gx

vulnerability	VCID-2nb2-9vgp-tqg9

vulnerability	VCID-36et-26h7-pke7

vulnerability	VCID-3kyu-tx4q-p3aq

vulnerability	VCID-489e-j7sj-5kgv

vulnerability	VCID-4yzj-hrqv-vbcp

vulnerability	VCID-5yts-xnha-4bf3

vulnerability	VCID-76t7-q4pa-gkct

vulnerability	VCID-79me-pjdn-ykgq

vulnerability	VCID-7nn6-aywu-z7g8

vulnerability	VCID-8vmm-1hvf-17ap

vulnerability	VCID-8xf2-hjfv-hybh

vulnerability	VCID-9der-5csu-nbbq

vulnerability	VCID-9ktu-55q4-3kau

vulnerability	VCID-9uqr-ph81-gfef

vulnerability	VCID-9uv1-gqq7-3kc9

vulnerability	VCID-brmp-djyb-q3b7

vulnerability	VCID-c4ys-1wzp-vqej

vulnerability	VCID-cjkd-2jr6-n7as

vulnerability	VCID-ck88-1urs-2kes

vulnerability	VCID-cnkc-vcp7-6kcw

vulnerability	VCID-ddfq-28qm-2fbn

vulnerability	VCID-dzu5-531f-qqgy

vulnerability	VCID-ekhg-mmjb-v3c3

vulnerability	VCID-fuh5-bwaq-yyfk

vulnerability	VCID-g7dn-kxs3-p7bx

vulnerability	VCID-gh6k-19h8-fqbf

vulnerability	VCID-hg1a-vx5c-hue3

vulnerability	VCID-j29t-cw2h-mfd8

vulnerability	VCID-ja7n-zgpp-dfh4

vulnerability	VCID-jck5-xymf-s3bh

vulnerability	VCID-jqs5-8ct7-wfgk

vulnerability	VCID-kf54-x29g-63fb

vulnerability	VCID-kyxz-v3sj-w3cw

vulnerability	VCID-m4yc-ms54-zyhv

vulnerability	VCID-ncbg-6m11-3qan

vulnerability	VCID-qr2m-f4yw-qqa5

vulnerability	VCID-qwak-6wgy-wfgs

vulnerability	VCID-r1hb-f5nm-ykhk

vulnerability	VCID-rc91-j3kf-zfch

vulnerability	VCID-rthq-fqk2-yydk

vulnerability	VCID-s6p1-rf35-euhy

vulnerability	VCID-spk8-q616-rkda

vulnerability	VCID-tmch-gj6d-tyfq

vulnerability	VCID-ts1p-pw9v-cbh3

vulnerability	VCID-u8a4-4pe2-9kcb

vulnerability	VCID-ub6x-9dku-c7fk

vulnerability	VCID-ur1a-7tdn-h3hu

vulnerability	VCID-vehj-ytsm-kqgz

vulnerability	VCID-vtz8-zmp4-xbdh

vulnerability	VCID-x9j7-98zt-6ygt

vulnerability	VCID-xssa-fwbx-kybq

vulnerability	VCID-ybv7-hqmj-nbgr

vulnerability	VCID-yerh-ssat-abah

vulnerability	VCID-yv5x-shsw-57cv

vulnerability	VCID-z3kp-p8ch-myhz

vulnerability	VCID-z7fn-ubfx-g3em

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@0.7.2-9%252Bdeb7u2

url pkg:deb/debian/roundcube@1.1.5%2Bdfsg.1-1~bpo8%2B5

purl pkg:deb/debian/roundcube@1.1.5%2Bdfsg.1-1~bpo8%2B5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14vp-t71a-4bh1

vulnerability	VCID-2eyy-k49d-m3af

vulnerability	VCID-2hap-9mqs-v3b8

vulnerability	VCID-2k4q-26tk-j3gx

vulnerability	VCID-2nb2-9vgp-tqg9

vulnerability	VCID-36et-26h7-pke7

vulnerability	VCID-3kyu-tx4q-p3aq

vulnerability	VCID-4yzj-hrqv-vbcp

vulnerability	VCID-5yts-xnha-4bf3

vulnerability	VCID-79me-pjdn-ykgq

vulnerability	VCID-7nn6-aywu-z7g8

vulnerability	VCID-8vmm-1hvf-17ap

vulnerability	VCID-8xf2-hjfv-hybh

vulnerability	VCID-9der-5csu-nbbq

vulnerability	VCID-9ktu-55q4-3kau

vulnerability	VCID-9uv1-gqq7-3kc9

vulnerability	VCID-brmp-djyb-q3b7

vulnerability	VCID-c4ys-1wzp-vqej

vulnerability	VCID-cjkd-2jr6-n7as

vulnerability	VCID-ck88-1urs-2kes

vulnerability	VCID-cnkc-vcp7-6kcw

vulnerability	VCID-ddfq-28qm-2fbn

vulnerability	VCID-ekhg-mmjb-v3c3

vulnerability	VCID-fuh5-bwaq-yyfk

vulnerability	VCID-gh6k-19h8-fqbf

vulnerability	VCID-hg1a-vx5c-hue3

vulnerability	VCID-j29t-cw2h-mfd8

vulnerability	VCID-jck5-xymf-s3bh

vulnerability	VCID-jqs5-8ct7-wfgk

vulnerability	VCID-kyxz-v3sj-w3cw

vulnerability	VCID-m4yc-ms54-zyhv

vulnerability	VCID-ncbg-6m11-3qan

vulnerability	VCID-qwak-6wgy-wfgs

vulnerability	VCID-rc91-j3kf-zfch

vulnerability	VCID-rthq-fqk2-yydk

vulnerability	VCID-s6p1-rf35-euhy

vulnerability	VCID-spk8-q616-rkda

vulnerability	VCID-tmch-gj6d-tyfq

vulnerability	VCID-ts1p-pw9v-cbh3

vulnerability	VCID-u8a4-4pe2-9kcb

vulnerability	VCID-ub6x-9dku-c7fk

vulnerability	VCID-ur1a-7tdn-h3hu

vulnerability	VCID-vehj-ytsm-kqgz

vulnerability	VCID-vtz8-zmp4-xbdh

vulnerability	VCID-x9j7-98zt-6ygt

vulnerability	VCID-xssa-fwbx-kybq

vulnerability	VCID-ybv7-hqmj-nbgr

vulnerability	VCID-yerh-ssat-abah

vulnerability	VCID-z3kp-p8ch-myhz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.1.5%252Bdfsg.1-1~bpo8%252B5

url pkg:deb/debian/roundcube@1.2.3%2Bdfsg.1-4%2Bdeb9u6

purl pkg:deb/debian/roundcube@1.2.3%2Bdfsg.1-4%2Bdeb9u6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14vp-t71a-4bh1

vulnerability	VCID-2eyy-k49d-m3af

vulnerability	VCID-2hap-9mqs-v3b8

vulnerability	VCID-2k4q-26tk-j3gx

vulnerability	VCID-2nb2-9vgp-tqg9

vulnerability	VCID-36et-26h7-pke7

vulnerability	VCID-3kyu-tx4q-p3aq

vulnerability	VCID-4yzj-hrqv-vbcp

vulnerability	VCID-5yts-xnha-4bf3

vulnerability	VCID-79me-pjdn-ykgq

vulnerability	VCID-7nn6-aywu-z7g8

vulnerability	VCID-8vmm-1hvf-17ap

vulnerability	VCID-8xf2-hjfv-hybh

vulnerability	VCID-9der-5csu-nbbq

vulnerability	VCID-9ktu-55q4-3kau

vulnerability	VCID-9uv1-gqq7-3kc9

vulnerability	VCID-cjkd-2jr6-n7as

vulnerability	VCID-ck88-1urs-2kes

vulnerability	VCID-cnkc-vcp7-6kcw

vulnerability	VCID-ddfq-28qm-2fbn

vulnerability	VCID-fuh5-bwaq-yyfk

vulnerability	VCID-gh6k-19h8-fqbf

vulnerability	VCID-hg1a-vx5c-hue3

vulnerability	VCID-j29t-cw2h-mfd8

vulnerability	VCID-jck5-xymf-s3bh

vulnerability	VCID-jqs5-8ct7-wfgk

vulnerability	VCID-kyxz-v3sj-w3cw

vulnerability	VCID-m4yc-ms54-zyhv

vulnerability	VCID-ncbg-6m11-3qan

vulnerability	VCID-qwak-6wgy-wfgs

vulnerability	VCID-rc91-j3kf-zfch

vulnerability	VCID-s6p1-rf35-euhy

vulnerability	VCID-ts1p-pw9v-cbh3

vulnerability	VCID-u8a4-4pe2-9kcb

vulnerability	VCID-ub6x-9dku-c7fk

vulnerability	VCID-ur1a-7tdn-h3hu

vulnerability	VCID-vehj-ytsm-kqgz

vulnerability	VCID-vtz8-zmp4-xbdh

vulnerability	VCID-x9j7-98zt-6ygt

vulnerability	VCID-xssa-fwbx-kybq

vulnerability	VCID-ybv7-hqmj-nbgr

vulnerability	VCID-z3kp-p8ch-myhz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/roundcube@1.2.3%252Bdfsg.1-4%252Bdeb9u6

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00083.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00083.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-10740

reference_id

reference_type

scores

value	0.00174
scoring_system	epss
scoring_elements	0.38532
published_at	2026-04-24T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38688
published_at	2026-04-21T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38656
published_at	2026-04-01T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38785
published_at	2026-04-08T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38806
published_at	2026-04-04T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38735
published_at	2026-04-07T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38796
published_at	2026-04-09T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38808
published_at	2026-04-11T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38772
published_at	2026-04-12T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38744
published_at	2026-04-13T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.3879
published_at	2026-04-16T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38768
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-10740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10740

reference_url	https://github.com/roundcube/roundcubemail/issues/6638
reference_id
reference_type
scores
url	https://github.com/roundcube/roundcubemail/issues/6638

reference_url	https://github.com/roundcube/roundcubemail/releases/tag/1.3.10
reference_id
reference_type
scores
url	https://github.com/roundcube/roundcubemail/releases/tag/1.3.10

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFFMSO5WKEYSGMTZPZFF4ZADUJ57PRN5/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFFMSO5WKEYSGMTZPZFF4ZADUJ57PRN5/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927713
reference_id	927713
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927713

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:opensuse:backports_sle:15.0:sp1::::::
reference_id	cpe:2.3:a:opensuse:backports_sle:15.0:sp1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:opensuse:backports_sle:15.0:sp1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:opensuse:backports_sle:15.0:sp2::::::
reference_id	cpe:2.3:a:opensuse:backports_sle:15.0:sp2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:opensuse:backports_sle:15.0:sp2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:roundcube:webmail::::::::
reference_id	cpe:2.3:a:roundcube:webmail::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:roundcube:webmail::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:29:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*
reference_id	cpe:2.3:o:opensuse:leap:15.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.2:::::::*
reference_id	cpe:2.3:o:opensuse:leap:15.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.2:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-10740

reference_id

CVE-2019-10740

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2019-10740

reference_url	https://usn.ubuntu.com/8132-1/
reference_id	USN-8132-1
reference_type
scores
url	https://usn.ubuntu.com/8132-1/

Weaknesses

cwe_id	319
name	Cleartext Transmission of Sensitive Information
description	The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

Exploits

Severity_range_score 4.3 - 4.3

Exploitability 0.5

Weighted_severity 3.9

Risk_score 1.9

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ur1a-7tdn-h3hu

Vulnerability Instance