AI Score
Confidence
High
EPSS
Percentile
58.8%
An issue was discovered in the lettre crate before 0.9.6 for Rust. In an e-mail message body, an attacker can place a . character after two <CR><LF> sequences and then inject arbitrary SMTP commands.
raw.githubusercontent.com/rustsec/advisory-db/main/crates/lettre/RUSTSEC-2021-0069.md
rustsec.org/advisories/RUSTSEC-2021-0069.html