Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-MH74-4M5G-FCJX
HistoryApr 19, 2021 - 2:54 p.m.

Malicious users could abuse Sydent to control the content of invitation emails

2021-04-1914:54:24
Google
osv.dev
6

0.001 Low

EPSS

Percentile

30.7%

JSON

Impact

A malicious user could abuse Sydent to send out arbitrary emails from the Sydent email address. This could be used to construct plausible phishing emails, for example.

Patches

Fixed in 4469d1d, 6b405a8, 65a6e91.

Note that these patches include changes to the default email templates. If these templates have been locally modified, they must also be updated.

For more information

If you have any questions or comments about this advisory, email us at [email protected].

Related

osv 2
debiancve 1
cvelist 1
nvd 1
github 1
cve 1
veracode 1
prion 1
osv
osv
PYSEC-2021-23
2021-04-15 21:15:00
CVE-2021-29432
2021-04-15 21:15:17
debiancve
debiancve
CVE-2021-29432
2021-04-15 21:15:17
cvelist
cvelist
CVE-2021-29432 Malicious users could control the content of invitation emails
2021-04-15 20:45:15
nvd
nvd
CVE-2021-29432
2021-04-15 21:15:17
github
github
Malicious users could abuse Sydent to control the content of invitation emails
2021-04-19 14:54:24
cve
cve
CVE-2021-29432
2021-04-15 21:15:17
veracode
veracode
Email Spoofing
2021-04-16 02:59:10
prion
prion
Design/Logic Flaw
2021-04-15 21:15:00

0.001 Low

EPSS

Percentile

30.7%

JSON
Related for OSV:GHSA-MH74-4M5G-FCJX
osv2debiancve1cvelist1nvd1github1cve1veracode1prion1