CVE-2020-1931

🗓️ 30 Jan 2020 18:11:15Reported by [email protected]Type

A command execution issue found in Apache SpamAssassin prior to 3.4.3 allows nefarious .cf files to run system commands, similar to CVE-2018-11805, with warnings when exploited

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 126
Cvelist	CVE-2020-1931	30 Jan 202017:38	–	cvelist
Cvelist	CVE-2018-11805	12 Dec 201922:11	–	cvelist
Cvelist	CVE-2019-19920	22 Dec 201917:07	–	cvelist
Cvelist	CVE-2020-1930	30 Jan 202017:42	–	cvelist
Prion	Command injection	30 Jan 202018:15	–	prion
Prion	Design/Logic Flaw	12 Dec 201923:15	–	prion
Prion	Command injection	30 Jan 202018:15	–	prion
Prion	Design/Logic Flaw	22 Dec 201918:15	–	prion
RedhatCVE	CVE-2020-1931	14 Feb 202009:14	–	redhatcve
RedhatCVE	CVE-2018-11805	18 Dec 201920:56	–	redhatcve

Nvd

Node

apache spamassassinRange<3.4.3

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOVVKFP2G2AF5GHAB4WMHOEX76A3H6CE/
usn	www.usn.ubuntu.com/4265-2/
lists	www.lists.opensuse.org/opensuse-security-announce/2020-04/msg00003.html
lists	www.lists.debian.org/debian-lts-announce/2020/02/msg00015.html
bz	www.bz.apache.org/SpamAssassin/show_bug.cgi
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B7SY2LUSH2X3IUXN4EQQ5A6QVUFYIV3D/
usn	www.usn.ubuntu.com/4265-1/
debian	www.debian.org/security/2020/dsa-4615
seclists	www.seclists.org/bugtraq/2020/Feb/1

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Jan 2020 18:15Current

7.2High risk

Vulners AI Score7.2

CVSS29.3

CVSS38.1

EPSS0.01481

CWE-78