Lucene search
Veracode Vulnerability DatabaseVERACODE:22860HistoryApr 01, 2020 - 12:38 a.m.
Directory Traversal
2020-04-0100:38:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
EPSS
0.003
Percentile
71.2%
mutt is vulnerable to directory traversal. The IMAP header caching mishandles the mailbox name parameter and allows ../ characters to be included. This results in arbitrary file access.
References
www.mutt.org/news.html
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.8_release_notes/index
access.redhat.com/errata/RHSA-2020:1126
access.redhat.com/security/updates/classification/#moderate
github.com/neomutt/neomutt/commit/57971dba06346b2d7179294f4528b8d4427a7c5d
gitlab.com/muttmua/mutt/commit/31eef6c766f47df8281942d19f76e35f475c781d
lists.debian.org/debian-lts-announce/2018/08/msg00001.html
neomutt.org/2018/07/16/release
security.gentoo.org/glsa/201810-07
usn.ubuntu.com/3719-3/
www.debian.org/security/2018/dsa-4277
Related
alpinelinux
alpinelinux
CVE-2018-14355
2018-07-17 17:29:00
debiancve
debiancve
CVE-2018-14355
2018-07-17 17:29:00
nvd
nvd
CVE-2018-14355
2018-07-17 17:29:00
prion
prion
Directory traversal
2018-07-17 17:29:00
oraclelinux
oraclelinux
mutt security update
2020-04-06 00:00:00
nessus
nessus
RHEL 7 : mutt (RHSA-2020:1126)
2020-03-31 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : mutt Vulnerability (NS-SA-2020-0061)
2020-12-09 00:00:00
CentOS 7 : mutt (CESA-2020:1126)
2020-04-10 00:00:00
osv
osv
CVE-2018-14355
2018-07-17 17:29:00
mutt - security update
2018-08-17 00:00:00
mutt - security update
2018-08-02 00:00:00
centos
centos
mutt security update
2020-04-08 18:49:15
cve
cve
CVE-2018-14355
2018-07-17 17:29:00
cvelist
cvelist
CVE-2018-14355
2018-07-17 17:00:00
ubuntucve
ubuntucve
CVE-2018-14355
2018-07-17 00:00:00
redhat
redhat
(RHSA-2020:1126) Moderate: mutt security update
2020-03-31 09:22:10
redhatcve
redhatcve
CVE-2018-14355
2018-07-18 19:50:06
openvas
openvas
Huawei EulerOS: Security Advisory for mutt (EulerOS-SA-2020-1412)
2020-04-16 00:00:00
Huawei EulerOS: Security Advisory for mutt (EulerOS-SA-2019-2508)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for mutt (EulerOS-SA-2020-1312)
2020-03-24 00:00:00
ubuntu
ubuntu
Mutt vulnerabilities
2018-09-28 00:00:00
Mutt vulnerabilities
2018-07-23 00:00:00
Mutt vulnerabilities
2018-07-23 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: mutt-1.9.2-2.fc27
2018-07-31 17:14:09
[SECURITY] Fedora 28 Update: mutt-1.10.1-1.fc28
2018-07-31 18:05:34
freebsd
freebsd
mutt -- remote code injection and path traversal vulnerability
2018-07-15 00:00:00
mutt/neomutt -- multiple vulnerabilities
2018-07-10 00:00:00
gentoo
gentoo
Mutt, NeoMutt: Multiple vulnerabilities
2018-10-30 00:00:00
debian
debian
[SECURITY] [DSA 4277-1] mutt security update
2018-08-17 18:15:34
[SECURITY] [DLA 1455-1] mutt security update
2018-08-02 11:00:52
[SECURITY] [DSA 4277-1] mutt security update
2018-08-17 18:15:34
mageia
mageia
Updated mutt packages fix security vulnerability
2018-11-16 01:04:32
suse
suse
Security update for mutt (important)
2018-08-06 15:13:42
Security update for mutt (important)
2019-01-17 00:00:00