Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-54713

Malicious code in bioql PyPI...

6.5CVSS5.7AI score0.00719EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.27 views

RHEL 9 : mutt (RHSA-2024:2290)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2290 advisory. Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and...

6.5CVSS5.9AI score0.00719EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.29 views

EulerOS 2.0 SP10 : mutt (EulerOS-SA-2023-3187)

According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 1.5.2 1.5.2 1...

6.5CVSS5.7AI score0.00719EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.14 views

EulerOS 2.0 SP11 : mutt (EulerOS-SA-2023-3252)

According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 1.5.2 1.5.2 1...

6.5CVSS5.7AI score0.00719EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/09/12 12:24 p.m.18 views

CVE-2023-4875

A null pointer dereference flaw was found in mutt when handling specially crafted characters. This issue could allow an attacker to send a specially crafted email that causes the email client to crash when reading or processing the email. Mitigation Mitigation for this issue is either not availab...

5.7CVSS6.6AI score0.00506EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2023/09/12 12:24 p.m.88 views

CVE-2023-4874

A null pointer dereference flaw was found in mutt when handling specially crafted characters. This issue could allow an attacker to send a specially crafted email that causes the email client to crash when reading or processing the email. Mitigation Mitigation for this issue is either not availab...

5.7CVSS6.6AI score0.00719EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/09/09 2:30 p.m.19 views

CVE-2023-4874 Undefined Behavior for Input to API in Mutt

Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 2.2.12...

4.3CVSS6.5AI score0.00719EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/09 2:30 p.m.15 views

CVE-2023-4874 Undefined Behavior for Input to API in Mutt

Null pointer dereference when viewing a specially crafted email in Mutt 1.5.2 2.2.12...

4.3CVSS6.7AI score0.00719EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/10/17 9:15 a.m.34 views

CVE-2022-39052

An external attacker is able to send a specially crafted email with many recipients and trigger a potential DoS of the system...

7.5CVSS6.1AI score0.00562EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/17 8:55 a.m.18 views

CVE-2022-39052 DoS attack using email

An external attacker is able to send a specially crafted email with many recipients and trigger a potential DoS of the system...

7.5CVSS7.7AI score0.00562EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.5 views

The vulnerability of Mozilla Thunderbird’s email client, related to writing beyond the buffer limit, allows attackers to execute arbitrary code.

The vulnerability of Mozilla Thunderbird email client relates to writing beyond the buffer boundaries. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted email...

10CVSS8.3AI score0.00701EPSS
Exploits0References6Affected Software4
UbuntuCve
UbuntuCve
added 2021/06/16 10:15 a.m.29 views

CVE-2021-21441

There is a XSS vulnerability in the ticket overview screens. It's possible to collect various information by having an e-mail shown in the overview screen. Attack can be performed by sending specially crafted e-mail to the system and it doesn't require any user intraction. This issue affects: OTR...

7.5CVSS6.3AI score0.01216EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/16 12:0 a.m.3 views

OTRS AG 跨站脚本漏洞

OTRS AG is an application of the German company OTRS. A service management software. OTRS AG suffers from a cross-site scripting vulnerability that can be triggered by an attacker sending a specially designed e-mail to the system...

7.5CVSS5.2AI score0.01216EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/12/29 12:0 a.m.4 views

PT-2020-6430 · Otrs Ag · Otrs +1

Name of the Vulnerable Software and Affected Versions: OTRS AG OTRS Community Edition versions 6.0.1 through 6.0.x OTRS AG OTRS versions prior to 7.0.26 Description: The issue is related to a lack of protection of the web page structure in the ticket request system OTRS, allowing an attacker to...

9.8CVSS6.8AI score0.99019EPSS
Exploits18References75
Cvelist
Cvelist
added 2020/11/21 5:24 p.m.25 views

CVE-2020-14258

HCL Notes is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a specially-crafted email message to hang the client. Versions 9, 10 and 11 are affected...

7.5AI score0.01247EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2018/05/08 7:0 a.m.32 views

Microsoft Exchange Memory Corruption Vulnerability

An information disclosure vulnerability exists when Microsoft Exchange improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the remote system. To exploit the vulnerability, an attacker would send a...

4.3CVSS1.8AI score0.07997EPSS
Exploits0
OSV
OSV
added 2018/03/02 3:29 p.m.25 views

CVE-2017-14461

A specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker needs to send a specially crafted email message to the...

7.1CVSS6.8AI score
Exploits0References7
RedHat Linux
RedHat Linux
added 2017/11/28 10:2 p.m.40 views

Important: Red Hat Security Advisory: procmail security update

An update for procmail is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

10CVSS7.7AI score0.12524EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2015/02/17 8:29 p.m.33 views

Crashing Google Email App for Android Just By Sending a Malicious Email

A vulnerability has been discovered in the wildly popular Google’s Stock Android Email App, that could be exploited by malicious attackers to remotely crash your smartphone application just by sending a specially crafted email. A Spain security researcher, Hector Marco, successfully exploited the...

5CVSS5.9AI score0.01712EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2014/12/09 12:0 a.m.5 views

Microsoft Exchange Server Outlook Web Access Cross-Site Scripting (MS14-075; CVE-2014-6326)

An elevation of privilege vulnerability exists in Microsoft Exchange Server. The vulnerability is due to an error in Microsoft Exchange input validation. A remote attacker can exploit this issue by enticing a victim to open a specially crafted email with Microsoft Outlook Web Access OWA...

4.3CVSS6.2AI score0.08722EPSS
Exploits0
Rows per page
Query Builder