Mailpile · Mailpile · CVE-2018-20954
**Name of the Vulnerable Software and Affected Versions**
Mailpile versions prior to 1.0.0rc4
**Description**
The issue concerns the "Security and Privacy" Encryption feature in Mailpile, which fails to exclude disabled, revoked, and expired keys.
**Recommendations**
For versions prior to 1.0.0rc4, update to version 1.0.0rc4 or later to resolve the issue.