AI Score
Confidence
High
EPSS
Percentile
77.3%
mailcow before 2022-05d allows a remote authenticated user to inject OS commands and escalate privileges to domain admin via the --debug option in conjunction with the βPIPEMESS option in Sync Jobs.
github.com/ly1g3/Mailcow-CVE-2022-31245
github.com/mailcow/mailcow-dockerized/releases/tag/2022-05d