{"id":"CVE-2025-2545","details":"Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES (3DES) cryptographic algorithm is used to protect emails sent with S/MIME encryption. Triple DES is considered obsolete and insecure due to its susceptibility to birthday attacks, which could compromise the confidentiality of encrypted messages.","modified":"2026-01-27T04:19:57.955036Z","published":"2025-05-05T12:15:16Z","withdrawn":"2026-01-27T04:19:57.955036Z","references":[{"type":"WEB","url":"https://www.incibe.es/en/incibe-cert/notices/aviso/cryptographic-algorithm-not-recommended-request-tracker-best-practical"},{"type":"WEB","url":"https://docs.bestpractical.com/release-notes/rt/4.4.8"},{"type":"WEB","url":"https://docs.bestpractical.com/release-notes/rt/5.0.8"}],"schema_version":"1.7.3"}