How severe is CVE-2025-26696?

This vulnerability has a severity rating of HIGH with a CVSS score of 7 out of 10.

What type of vulnerability is CVE-2025-26696?

This is classified as CWE-290, which is a common weakness in software security.

CVE-2025-26696

HIGH Year: 2025

CVSS v3 Score

7.0

High

Weakness Type

CWE-290

View all →

Vulnerability Description

Certain crafted MIME email messages that claimed to contain an encrypted OpenPGP message, which instead contained an OpenPGP signed message, were wrongly shown as being encrypted. This vulnerability affects Thunderbird < 136 and Thunderbird < 128.8.

CVE-1999-0012

HIGH

CVSS:7.0(High)

Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.

CWE-2901999

CVE-2025-28128

HIGH

CVSS:7.0(High)

An issue in Mytel Telecom Online Account System v1.0 allows attackers to bypass the OTP verification process via a crafted request.

CWE-2902025

CVE-2019-0283

HIGH

CVSS:7.1(High)

SAP NetWeaver Process Integration (Adapter Engine), fixed in versions 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; is vulnerable to Digital Signature Spoofing. It is possible to spoof XML signatures and send...

CWE-2902019