CVE-2020-12641: Roundcube Webmail Remote Code Execution Vulnerability.
Roundcube Webmail Remote Code Execution Vulnerability. Roundcube Webmail contains an remote code execution vulnerability that allows attackers to execute code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.
- CISA KEV-listed (remediation due 2023-07-13)
- EPSS 93.3% (99.8% percentile)