Lucene search
K

373 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2018-14356

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a zero- length UID. CVE-2018-14356 Note that Nessus relies on the...

9.8CVSS7AI score0.03166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-14954

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a begin TLS response, th...

5.9CVSS6.5AI score0.02288EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-14349

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without a message. CVE-2018-14349 Note that...

9.8CVSS7.4AI score0.03166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-14353

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imapquotestring in imap/util.c has an integer underflow. CVE-2018-14353 Note that...

9.8CVSS7.4AI score0.03698EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-14354

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote...

9.8CVSS7.6AI score0.06229EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.8 views

Mageia: Security Advisory (MGASA-2025-0070)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.3AI score0.00331EPSS
Exploits0References4
Mageia
Mageia
added 2025/02/24 6:29 p.m.53 views

Updated neomutt packages fix security vulnerabilities

The To and Cc email header fields are not protected by cryptographic signing. CVE-2024-49393 The In-reply-to email header field is not protected by cryptographic signing. CVE-2024-49394...

6.5CVSS7.3AI score0.00331EPSS
Exploits0References2
OSV
OSV
added 2025/02/24 6:29 p.m.22 views

MGASA-2025-0070 Updated neomutt packages fix security vulnerabilities

The To and Cc email header fields are not protected by cryptographic signing. CVE-2024-49393 The In-reply-to email header field is not protected by cryptographic signing. CVE-2024-49394...

6.5CVSS6.7AI score0.00331EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/01/16 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7204-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.06229EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2025/01/15 4:7 p.m.12 views

USN-7204-1: NeoMutt vulnerabilities

Jeriko One discovered that NeoMutt incorrectly handled certain IMAP and POP3 responses. An attacker could possibly use this issue to cause NeoMutt to crash, resulting in a denial of service, or the execution of arbitrary code. This issue only affected Ubuntu 18.04 LTS. CVE-2018-14349,...

9.8CVSS7.5AI score0.06229EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/01/15 12:0 a.m.17 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : NeoMutt vulnerabilities (USN-7204-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7204-1 advisory. Jeriko One discovered that NeoMutt incorrectly handled certain IMAP and POP3 responses. An attacker could possibly us...

9.8CVSS7.5AI score0.06229EPSS
Exploits2References22
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.10 views

The vulnerability of the --hidden-recipient mode in Mutt and NeoMutt email clients, which allows a hacker to disclose protected information.

The vulnerability of the “--hidden-recipient” mode in Mutt and NeoMutt clients is related to incorrect processing of header fields during PGP encryption. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

5.3CVSS5.9AI score0.00295EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.10 views

The vulnerability of Mutt and NeoMutt email clients, related to errors in verifying the cryptographic signature, allows a hacker to alter the list of trusted recipients and expose the encrypted information.

The vulnerability of Mutt and NeoMutt email clients stems from errors in verifying the cryptographic signature when processing header fields. Exploiting this vulnerability could allow a malicious actor to alter the list of trusted recipients and expose the sensitive information being protected...

7.4CVSS7.1AI score0.00331EPSS
Exploits0References11Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2024/11/27 12:0 a.m.5 views

neomutt-20241114-1.1 on GA media (moderate)

neomutt-20241114-1.1 on GA media Announcement ID: openSUSE-SU-2024:14527-1 Rating: moderate Cross-References: CVE-2024-49393 CVE-2024-49394 CVSS scores: CVE-2024-49393 SUSE : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2024-49393 SUSE : 6.3...

6.3CVSS7.4AI score0.00331EPSS
Exploits0
OSV
OSV
added 2024/11/26 12:0 a.m.10 views

OPENSUSE-SU-2024:14527-1 neomutt-20241114-1.1 on GA media

These are all security issues fixed in the neomutt-20241114-1.1 package on the GA media of openSUSE Tumbleweed...

6.5CVSS6.3AI score0.00331EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/11/14 12:23 a.m.3 views

SUSE CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

3.7CVSS6.9AI score0.00331EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/11/14 12:23 a.m.2 views

SUSE CVE-2024-49394

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

3.7CVSS7AI score0.00329EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/11/14 12:23 a.m.3 views

SUSE CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS7AI score0.00295EPSS
Exploits0References3
OSV
OSV
added 2024/11/12 3:15 a.m.14 views

CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS5.3AI score0.00295EPSS
Exploits0References2
NVD
NVD
added 2024/11/12 3:15 a.m.33 views

CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS0.00295EPSS
Exploits0References5
Rows per page
Query Builder