Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-49394

Опубликовано: 11 нояб. 2024
Источник: redhat
CVSS3: 5.3
EPSS Низкий

Описание

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 7muttOut of support scope
Red Hat Enterprise Linux 8muttAffected
Red Hat Enterprise Linux 9muttAffected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-347
https://bugzilla.redhat.com/show_bug.cgi?id=2325330mutt: neomutt: In-Reply-To email header field it not protected by cryptograpic signing

EPSS

Процентиль: 24%
0.00082
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-49394

CVSS3: 5.3
ubuntu
около 1 года назад

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender.

nvd логотип

CVE-2024-49394

CVSS3: 5.3
nvd
около 1 года назад

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender.

debian логотип

CVE-2024-49394

CVSS3: 5.3
debian
около 1 года назад

In mutt and neomutt the In-Reply-To email header field is not protecte ...

github логотип

GHSA-q998-8jff-x3rg

CVSS3: 5.3
github
около 1 года назад

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender.

EPSS

Процентиль: 24%
0.00082
Низкий

5.3 Medium

CVSS3