← Zuruck zu CVEs
CVE-2024-49394
MEDIUM5.3
Beschreibung
In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender.
CVE Details
CVSS v3.1 Bewertung5.3
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht11/12/2024
Zuletzt geandert11/14/2024
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
mutt:muttneomutt:neomuttredhat:enterprise_linux
Schwachen (CWE)
CWE-347
Referenzen
https://access.redhat.com/security/cve/CVE-2024-49394(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=2325330(secalert@redhat.com)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.