The vulnerability of the --hidden-recipient mode in Mutt and NeoMutt email clients, which allows a hacker to disclose protected information.

The vulnerability of the “--hidden-recipient” mode in Mutt and NeoMutt clients is related to incorrect processing of header fields during PGP encryption. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

SUSE CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

DEBIAN-CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

UBUNTU-CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

CVE-2024-49395

CVE-2024-49395 affects the mail clients mutt and neomutt . The vulnerability arises because PGP encryption does not use the --hidden-recipient mode, which can allow leakage of the Bcc header by inferring recipients’ info. The connected sources confirm this behavior but do not provide product vers...

PT-2024-10069 · Neomutt +2 · Neomutt +2

Name of the Vulnerable Software and Affected Versions: mutt and neomutt affected versions not specified Description: The issue is related to PGP encryption in mutt and neomutt, where the --hidden-recipient mode is not used. This may lead to the leakage of the Bcc email header field by inferring...