Lucene search
K

373 matches found

OSV
OSV
added 2021/05/05 4:15 p.m.22 views

CVE-2021-32055

Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...

9.1CVSS6.6AI score
Exploits0References4
Prion
Prion
added 2021/05/05 4:15 p.m.26 views

Out-of-bounds

Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...

5.8CVSS9AI score0.02551EPSS
Exploits0References4Affected Software2
UbuntuCve
UbuntuCve
added 2021/05/05 4:15 p.m.27 views

CVE-2021-32055

Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...

9.1CVSS7.2AI score0.02551EPSS
Exploits0References5
OSV
OSV
added 2021/05/05 4:15 p.m.4 views

UBUNTU-CVE-2021-32055

Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...

9.1CVSS7.3AI score0.02551EPSS
Exploits0References6
CVE
CVE
added 2021/05/05 3:6 p.m.128 views

CVE-2021-32055

CVE-2021-32055 affects Mutt 1.11.0–2.0.x (before 2.0.7) and NeoMutt up to 2021-05-04, due to an out-of-bounds read in imap/util.c when an IMAP sequence ends with a comma. The issue is tied to QRESYNC via the $imap_qresync setting (not enabled by default). Remediation per connected advisories incl...

9.1CVSS8.9AI score0.02551EPSS
Exploits0References4Affected Software2
Debian CVE
Debian CVE
added 2021/05/05 3:6 p.m.32 views

CVE-2021-32055

Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...

9.1CVSS9.2AI score0.02551EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/05/04 12:0 a.m.5 views

PT-2021-4065 · Neomutt +4 · Neomutt +4

Name of the Vulnerable Software and Affected Versions: Mutt versions 1.11.0 through 2.0.x before 2.0.7 NeoMutt versions 2019-10-25 through 2021-05-04 Description: The issue is related to incorrect handling of an IMAP sequence set that ends with a comma in the imap/util.c component of Mutt and...

9.8CVSS6.5AI score0.06229EPSS
Exploits3References118
BDU FSTEC
BDU FSTEC
added 2021/04/13 12:0 a.m.7 views

The vulnerability of Mutt and NeoMutt email clients stems from deficiencies in the process of neutralizing special characters in the output data used by the incoming component. This allows attackers to gain unauthorized access to protected information.

The vulnerability of Mutt and NeoMutt email clients is related to deficiencies in the process of neutralizing special elements in the output data used by the incoming component. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected...

5.9CVSS6.5AI score0.02288EPSS
Exploits0References11Affected Software6
Tenable Nessus
Tenable Nessus
added 2021/02/22 12:0 a.m.35 views

EulerOS 2.0 SP2 : mutt (EulerOS-SA-2021-1330)

According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate...

5.9CVSS6.4AI score0.02323EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.30 views

GLSA-202101-32 : Mutt, NeoMutt: Information disclosure

The remote host is affected by the vulnerability described in GLSA-202101-32 Mutt, NeoMutt: Information disclosure A weakness in TLS handshake handling was found which may allow information disclosure. Impact : A remote attacker may be able to cause information disclosure. Workaround : There is n...

5.3CVSS5.6AI score0.02323EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2021/01/26 12:0 a.m.38 views

Mutt, NeoMutt: Information disclosure

Background Mutt is a small but very powerful text-based mail client. NeoMutt is a command line mail reader or MUA. It’s a fork of Mutt with added features. Description A weakness in TLS handshake handling was found which may allow information disclosure. Impact A remote attacker may be able to...

5.3CVSS5.6AI score0.02323EPSS
Exploits0
Veracode
Veracode
added 2020/12/06 3:38 a.m.20 views

Buffer Overflow

NeoMutt is vulnerable to buffer overflow. The vulnerability exist because of incorrect sscanf usage...

9.8CVSS3.5AI score0.02651EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2020/12/06 3:38 a.m.18 views

Insecure Validation

neomutt does not perform secure validation. The newsrc.c does not properly restrict '/ characters, which could result in unsafe interaction with cache pathnames...

7.5CVSS3.8AI score0.0218EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2020/12/04 9:23 a.m.7 views

OPENSUSE-SU-2020:2158-1 Security update for neomutt

This update for neomutt fixes the following issues: Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. Security - imap: close connection on all failures Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn when...

5.9CVSS6.2AI score0.02323EPSS
Exploits0References10
OSV
OSV
added 2020/12/04 9:23 a.m.5 views

OPENSUSE-SU-2020:2157-1 Security update for neomutt

This update for neomutt fixes the following issues: Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. Security - imap: close connection on all failures Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn when...

5.9CVSS6.2AI score0.02323EPSS
Exploits0References10
OPENSUSE Linux
OPENSUSE Linux
added 2020/12/04 12:0 a.m.39 views

Security update for neomutt (moderate)

openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2158-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Backports SLE-15-SP2 An...

5.9CVSS6.6AI score0.02323EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2020/12/04 12:0 a.m.35 views

Security update for neomutt (moderate)

openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2157-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Backports SLE-15-SP1 An...

5.9CVSS6.6AI score0.02323EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/12/03 12:0 a.m.73 views

openSUSE Security Update : neomutt (openSUSE-2020-2127)

This update for neomutt fixes the following issues : Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. - Security - imap: close connection on all failures - Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn...

5.9CVSS6.4AI score0.02323EPSS
Exploits0References9
OPENSUSE Linux
OPENSUSE Linux
added 2020/12/01 12:0 a.m.30 views

Security update for neomutt (moderate)

openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2127-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15....

5.9CVSS6.6AI score0.02323EPSS
Exploits0References5
OSV
OSV
added 2020/11/30 7:22 p.m.6 views

OPENSUSE-SU-2020:2127-1 Security update for neomutt

This update for neomutt fixes the following issues: Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. Security - imap: close connection on all failures Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn when...

5.9CVSS6.2AI score0.02323EPSS
Exploits0References10
Rows per page
Query Builder