Medium6.5Red Hat Linux Updated
Silent file attachment via ?attach= parameter
CVE-2026-13324 Published Jun 25, 2026Updated by vendor Jun 25, 2026
Affected products & platforms
Red Hat LinuxUnclassified
Summary
Silent file attachment via ?attach= parameter. Red Hat rates this moderate (CVSS 6.5).
Mitigation checklist
Recommended fix / mitigation
- To mitigate this risk, avoid clicking untrusted `mailto` links and always review all attachments before sending an email. Alternatively, you can configure a different email client as your default `mailto` handler to disable Geary's automatic attachment functionality.
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.