CVE-2024-6048 Openfind MailGates and MailAudit - OS Command Injection

🗓️ 17 Jun 2024 07:28:48Reported by twcertType

Openfind MailGates and MailAudit OS Command Injection vulnerability in email attachments handlin

Reporter	Title	Published	Views	Family All 5
CNNVD	Openfind Information Technology MailAudit Operating System Command Injection Vulnerability	17 Jun 202400:00	–	cnnvd
CVE	CVE-2024-6048	17 Jun 202407:28	–	cve
EUVD	EUVD-2024-47206	3 Oct 202520:07	–	euvd
NVD	CVE-2024-6048	17 Jun 202408:15	–	nvd
Vulnrichment	CVE-2024-6048 Openfind MailGates and MailAudit - OS Command Injection	17 Jun 202407:28	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "MailGates 5.0",
    "vendor": "Openfind",
    "versions": [
      {
        "lessThan": "Patch 5.2.10.094",
        "status": "affected",
        "version": "earlier",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MailAudit 5.0",
    "vendor": "Openfind",
    "versions": [
      {
        "lessThan": "Patch 5.2.10.094",
        "status": "affected",
        "version": "earlier",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MailGates 6.0",
    "vendor": "Openfind",
    "versions": [
      {
        "lessThan": "Patch 6.1.7.037",
        "status": "affected",
        "version": "earlier",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MailAudit 6.0",
    "vendor": "Openfind",
    "versions": [
      {
        "lessThan": "Patch 6.1.7.037",
        "status": "affected",
        "version": "earlier",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
twcert	www.twcert.org.tw/tw/cp-132-7885-a8013-1.html
twcert	www.twcert.org.tw/en/cp-139-7886-20b61-2.html

17 Jun 2024 07:28Current

CVSS 3.19.8

EPSS0.01056

CWE-78