Roundcube.Webmail.Brute.Force

description-logoDescription

This indicates the detection of a Brute-Force attack against Roundcube webmail.
The vulnerability is due to insufficient protection against brute-force attacks on the application. A remote attacker may be able to exploit this to gain access to sensitive information.

affected-products-logoAffected Products

Roundcube webmail version 1.1.3 and before

Impact logoImpact

Information Disclosure: Remote attackers can gain access to sensitive information

recomended-action-logoRecommended Actions

Upgrade to the latest version from
https://roundcube.net/download/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)