Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1397 matches found

OSV
OSVadded 2024/11/12 3:15 a.m.2 views

DEBIAN-CVE-2024-49394

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

5.3CVSS5.6AI score0.00329EPSS
Exploits0References1
NVD
NVDadded 2024/11/12 3:15 a.m.18 views

CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS0.00295EPSS
Exploits0References5
OSV
OSVadded 2024/11/12 3:15 a.m.0 views

UBUNTU-CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS5.8AI score0.00295EPSS
Exploits0References7
OSV
OSVadded 2024/11/12 3:15 a.m.0 views

UBUNTU-CVE-2024-49394

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

5.3CVSS5.8AI score0.00329EPSS
Exploits0References8
OSV
OSVadded 2024/11/12 2:15 a.m.13 views

CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS7.4AI score0.00331EPSS
Exploits0References2
OSV
OSVadded 2024/11/12 2:15 a.m.1 views

DEBIAN-CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS7.2AI score0.00331EPSS
Exploits0References1
NVD
NVDadded 2024/11/12 2:15 a.m.16 views

CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS0.00331EPSS
Exploits0References5
OSV
OSVadded 2024/11/12 2:15 a.m.1 views

UBUNTU-CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS5.8AI score0.00331EPSS
Exploits0References8
Cvelist
Cvelistadded 2024/11/12 2:8 a.m.20 views

CVE-2024-49395 Mutt: neomutt: bcc email header field is indirectly leaked by cryptographic info block

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS0.00295EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/11/12 2:8 a.m.21 views

CVE-2024-49395 Mutt: neomutt: bcc email header field is indirectly leaked by cryptographic info block

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS6.8AI score0.00295EPSS
Exploits0References5
CVE
CVEadded 2024/11/12 2:8 a.m.68 views

CVE-2024-49395

CVE-2024-49395 affects the mail clients mutt and neomutt . The vulnerability arises because PGP encryption does not use the --hidden-recipient mode, which can allow leakage of the Bcc header by inferring recipients’ info. The connected sources confirm this behavior but do not provide product vers...

5.3CVSS5.2AI score0.00295EPSS
Exploits0References5Affected Software2
Debian CVE
Debian CVEadded 2024/11/12 2:8 a.m.11 views

CVE-2024-49395

In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...

5.3CVSS5.6AI score0.00295EPSS
Exploits0
Cvelist
Cvelistadded 2024/11/12 2:7 a.m.27 views

CVE-2024-49394 Mutt: neomutt: in-reply-to email header field it not protected by cryptograpic signing

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

5.3CVSS0.00329EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/11/12 2:7 a.m.20 views

CVE-2024-49394 Mutt: neomutt: in-reply-to email header field it not protected by cryptograpic signing

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

5.3CVSS6.8AI score0.00329EPSS
Exploits0References5
Cvelist
Cvelistadded 2024/11/12 1:55 a.m.19 views

CVE-2024-49393 Mutt: neomutt: to and cc email header fields are not protected by cryptographic signing

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS0.00331EPSS
Exploits0References5
CVE
CVEadded 2024/11/12 1:55 a.m.83 views

CVE-2024-49393

CVE-2024-49393 affects the email clients neomutt and mutt . The issue is that the To and Cc headers are not validated by cryptographic signing, allowing an interceptor to modify recipients and potentially compromise message confidentiality. Public documents confirm patched updates exist (e.g., Ma...

6.5CVSS6.3AI score0.00331EPSS
Exploits0References5Affected Software2
Vulnrichment
Vulnrichmentadded 2024/11/12 1:55 a.m.21 views

CVE-2024-49393 Mutt: neomutt: to and cc email header fields are not protected by cryptographic signing

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS6.8AI score0.00331EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2024/11/12 1:55 a.m.10 views

CVE-2024-49393

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality...

6.5CVSS7.3AI score0.00331EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2024/11/12 12:0 a.m.2 views

PT-2024-33505 · Neomutt +4 · Neomutt +4

Name of the Vulnerable Software and Affected Versions: mutt and neomutt affected versions not specified Description: The issue concerns the In-Reply-To email header field in mutt and neomutt, which is not protected by cryptographic signing. This allows an attacker to reuse an unencrypted but sign...

9.8CVSS6.2AI score0.06229EPSS
Exploits2References91
RedhatCVE
RedhatCVEadded 2024/11/11 9:29 p.m.11 views

CVE-2024-49394

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

5.3CVSS6.9AI score0.00329EPSS
Exploits0References3
Rows per page
Query Builder