CVE-2021-44143

🗓️ 22 Nov 2021 19:29:29Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 117 Views

Flaw in mbsync allows remote code execution via crafted mail from compromised IMAP server.

Reporter	Title	Published	Views	Family All 23
AlpineLinux	CVE-2021-44143	22 Nov 202119:29	–	alpinelinux
ArchLinux	[ASA-202112-5] isync: arbitrary code execution	3 Dec 202100:00	–	archlinux
Circl	CVE-2021-44143	22 Nov 202122:20	–	circl
CNNVD	Apple Isync 缓冲区错误漏洞	22 Nov 202100:00	–	cnnvd
Cvelist	CVE-2021-44143	22 Nov 202119:29	–	cvelist
Debian CVE	CVE-2021-44143	22 Nov 202119:29	–	debiancve
EUVD	EUVD-2021-30996	3 Oct 202520:07	–	euvd
Fedora	[SECURITY] Fedora 34 Update: isync-1.4.4-1.fc34	6 Dec 202101:10	–	fedora
Fedora	[SECURITY] Fedora 35 Update: isync-1.4.4-1.fc35	13 Dec 202101:04	–	fedora
Tenable Nessus	GLSA-202208-15 : isync: Multiple Vulnerabilities	11 Aug 202200:00	–	nessus

NVD

Node

isync_project isyncRange1.4.0–1.4.3

Node

Node

Source	Link
sourceforge	www.sourceforge.net/p/isync/isync/commit_browser
openwall	www.openwall.com/lists/oss-security/2021/12/03/2
bugs	www.bugs.debian.org/cgi-bin/bugreport.cgi
sourceforge	www.sourceforge.net/p/isync/isync/ref/master/tags/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CYZ2GNB4ZO2T27D2XNUWMCS3THZYSJQU/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LCBSY7OZ57XNC6ZYXF6WU5KBSWITZVDX/
security	www.security.gentoo.org/glsa/202208-15

21 Nov 2024 06:30Current

9.4High risk

Vulners AI Score9.4

CVSS 27.5

CVSS 3.19.8

EPSS0.10258