Webmail
by Roundcube
Review your setup
Webmail has some exploitation signals but is generally manageable with regular updates.
What to do
- Keep this software updated
- Review your configuration for unnecessary exposure
- Check for known-vulnerable components or plugins
What Attackers Target
Vulnerabilities with high exploit probability
23.2%
Confirmed actively exploited (CISA)
19.6%
Public exploit code available
0.0%
Based on 56 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2020-12641 | 9.8 | 93.1% | Yes |
| CVE-2025-49113 | 9.9 | 91.6% | Yes |
| CVE-2024-42009 | 9.3 | 91.4% | Yes |
| CVE-2023-5631 | 6.1 | 83.4% | Yes |
| CVE-2023-43770 | 6.1 | 80.4% | Yes |
| CVE-2020-13965 | 6.1 | 71.8% | Yes |
| CVE-2020-35730 | 6.1 | 64.8% | Yes |
| CVE-2021-44026 | 9.8 | 64.0% | Yes |
| CVE-2024-37383 | 6.1 | 64.0% | Yes |
| CVE-2024-42008 | 9.3 | 57.3% | — |
| CVE-2016-9920 | 7.5 | 38.3% | — |
| CVE-2017-16651 | 7.8 | 33.3% | Yes |
| CVE-2020-12640 | 9.8 | 22.7% | — |
| CVE-2025-68461 | 7.2 | 6.8% | Yes |
| CVE-2017-17688 | 5.9 | 3.3% | — |
| CVE-2024-57004 | 6.1 | 3.1% | — |
| CVE-2015-2180 | 8.8 | 2.7% | — |
| CVE-2018-19206 | 6.1 | 2.4% | — |
| CVE-2020-12625 | 6.1 | 2.3% | — |
| CVE-2015-5383 | 7.5 | 1.8% | — |
45
/ 100
moderate-risk
Active Threat
28/50 · Moderate
Exploit Availability
17/50 · Low
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.