Roundcube.Webmail.Brute.Force
Description
This indicates the detection of a Brute-Force attack against Roundcube webmail.
The vulnerability is due to insufficient protection against brute-force attacks on the application. A remote attacker may be able to exploit this to gain access to sensitive information.
Affected Products
Roundcube webmail version 1.1.3 and before
Impact
Information Disclosure: Remote attackers can gain access to sensitive information
Recommended Actions
Upgrade to the latest version from
https://roundcube.net/download/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |