Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1397 matches found

OpenVAS
OpenVASadded 2020/06/25 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-4403-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.02288EPSS
Exploits0References3
Ubuntu
Ubuntuadded 2020/06/24 4:22 p.m.71 views

USN-4403-1: Mutt vulnerability and regression

It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to enable MITM attacks. CVE-2020-14954 This update also address a regression caused in the last update USN-4401-1. It only affected Ubuntu 12.04 ESM, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and...

5.9CVSS6.6AI score0.02288EPSS
Exploits0References1
OSV
OSVadded 2020/06/24 4:22 p.m.3 views

USN-4403-1 mutt vulnerability and regression

It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to enable MITM attacks. CVE-2020-14954 This update also address a regression caused in the last update USN-4401-1. It only affected Ubuntu 12.04 ESM, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and...

5.9CVSS6.6AI score0.02288EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2020/06/23 4:25 p.m.30 views

CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

4.3CVSS2.6AI score0.02288EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2020/06/23 12:0 a.m.32 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Mutt vulnerabilities (USN-4401-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4401-1 advisory. It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to enable MITM attack...

5.9CVSS6.4AI score0.0214EPSS
Exploits0References3
OpenVAS
OpenVASadded 2020/06/23 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-4401-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.8AI score0.0214EPSS
Exploits0References2
OSV
OSVadded 2020/06/22 2:20 p.m.5 views

USN-4401-1 mutt vulnerabilities

It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to enable MITM attacks. CVE-2020-14093 It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to proceeds with a connection even if the...

5.9CVSS6.5AI score0.0214EPSS
Exploits0References3
Ubuntu
Ubuntuadded 2020/06/22 2:20 p.m.70 views

USN-4401-1: Mutt vulnerabilities

It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to enable MITM attacks. CVE-2020-14093 It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to proceeds with a connection even if the...

5.9CVSS6.3AI score0.0214EPSS
Exploits0
CNVD
CNVDadded 2020/06/22 12:0 a.m.6 views

Mutt and NeoMutt Injection Vulnerabilities

Mutt is a text-based mail client for Unix-like systems by Michael Elkins Software Developers.NeoMutt is a command-line mail reader. An injection vulnerability exists in Mutt versions prior to 1.14.4 and NeoMutt versions prior to 2020-06-19. The vulnerability stems from a lack of proper validation...

5.9CVSS9.4AI score0.02288EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2020/06/22 12:0 a.m.30 views

Debian DSA-4707-1 : mutt - security update

Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Mutt mail client, which could enable MITM attacks. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4707. The...

5.9CVSS6.5AI score0.02288EPSS
Exploits0References6
OSV
OSVadded 2020/06/21 5:15 p.m.23 views

CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS5.6AI score
Exploits0References16
NVD
NVDadded 2020/06/21 5:15 p.m.17 views

CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS0.02288EPSS
Exploits0References16
OSV
OSVadded 2020/06/21 5:15 p.m.1 views

DEBIAN-CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS6.6AI score0.02288EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2020/06/21 5:15 p.m.31 views

CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS6.6AI score0.02288EPSS
Exploits0References7
Prion
Prionadded 2020/06/21 5:15 p.m.15 views

Design/Logic Flaw

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

4.3CVSS5.5AI score0.02288EPSS
Exploits0References16Affected Software6
OSV
OSVadded 2020/06/21 5:15 p.m.7 views

UBUNTU-CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS6.6AI score0.02288EPSS
Exploits0References8
EUVD
EUVDadded 2020/06/21 4:55 p.m.2 views

EUVD-2020-7089

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS5.9AI score0.02288EPSS
Exploits0References19
Cvelist
Cvelistadded 2020/06/21 4:55 p.m.21 views

CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.8AI score0.02288EPSS
Exploits0References16
CVE
CVEadded 2020/06/21 4:55 p.m.288 views

CVE-2020-14954

CVE-2020-14954 affects mutt before 1.14.4 and NeoMutt before 2020-06-19. A STARTTLS buffering issue causes the client to read extra data after a server "begin TLS" response and evaluate it in a TLS context, enabling potential man‑in‑the‑middle (MITM) exploitation during IMAP/SMTP/POP3. The issue ...

5.9CVSS5.7AI score0.02288EPSS
Exploits0References16Affected Software1
Debian CVE
Debian CVEadded 2020/06/21 4:55 p.m.29 views

CVE-2020-14954

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

5.9CVSS6.1AI score0.02288EPSS
Exploits0
Rows per page
Query Builder