5.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
5.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.5%
Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12
[
{
"vendor": "Mutt",
"product": "Mutt",
"versions": [
{
"version": "1.5.2",
"status": "affected",
"lessThan": "2.2.12",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]
www.openwall.com/lists/oss-security/2023/09/26/6
gitlab.com/muttmua/mutt/-/commit/452ee330e094bfc7c9a68555e5152b1826534555.patch
gitlab.com/muttmua/mutt/-/commit/4cc3128abdf52c615911589394a03271fddeefc6.patch
lists.debian.org/debian-lts-announce/2023/09/msg00021.html
www.debian.org/security/2023/dsa-5494
5.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
5.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.5%