Lucene search

GoogleOSV:USN-5151-1

HistoryNov 18, 2021 - 1:55 p.m.

mailman vulnerabilities

2021-11-1813:55:40

Google

osv.dev

mailman

vulnerabilities

url handling

input handling

code execution

sensitive information exposure

cve-2021-43331

cve-2021-43332

software

AI Score

6.9

Confidence

High

EPSS

0.003

Percentile

70.1%

JSON

It was discovered that Mailman incorrectly handled certain URL.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2021-43331)

It was discovered that Mailman incorrectly handled certain inputs.
An attacker could possibly use this issue to expose sensitive information.
(CVE-2021-43332)

References

launchpad.net/bugs/1949401

launchpad.net/mailman/+bug/1949403

ubuntu.com/security/CVE-2021-43331

ubuntu.com/security/CVE-2021-43332

ubuntu.com/security/notices/USN-5151-1