6.6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
65.3%
An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict ‘/’ characters that may have unsafe interaction with cache pathnames.
github.com/neomutt/neomutt/commit/9bfab35522301794483f8f9ed60820bdec9be59e
lists.debian.org/debian-lts-announce/2018/08/msg00001.html
neomutt.org/2018/07/16/release
www.debian.org/security/2018/dsa-4277