Known Vulnerabilities for products from Mutt
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Mutt".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-32055 | Mutt 1.11.0 through 2.0.x before 2.0.7 (and NeoMutt 2019-10-25 through 2021-05-04) has a $imap_qresync issue in which imap/ut... | 9.1 - CRITICAL | 2021-05-05 | 2021-06-01 |
| CVE-2021-3181 | rfc822.c in Mutt through 2.0.4 allows remote attackers to cause a denial of service (mailbox unavailability) by sending email... | 6.5 - MEDIUM | 2021-01-19 | 2023-11-07 |
| CVE-2020-28896 | Mutt before 2.0.2 and NeoMutt before 2020-11-20 did not ensure that $ssl_force_tls was processed if an IMAP server's initial ... | 5.3 - MEDIUM | 2020-11-23 | 2021-07-21 |
| CVE-2020-14954 | Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a se... | 5.9 - MEDIUM | 2020-06-21 | 2023-11-07 |
| CVE-2020-14154 | Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expire... | 4.8 - MEDIUM | 2020-06-15 | 2023-03-01 |
| CVE-2020-14093 | Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response. | 5.9 - MEDIUM | 2020-06-15 | 2022-04-27 |
| CVE-2018-14362 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have u... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-19 |
| CVE-2018-14359 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They have a buffer overflow via base64 data. | 9.8 - CRITICAL | 2018-07-17 | 2020-05-19 |
| CVE-2018-14358 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2018-14357 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitr... | 9.8 - CRITICAL | 2018-07-17 | 2020-08-24 |
| CVE-2018-14356 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a zero-length UID. | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2018-14355 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal ... | 5.3 - MEDIUM | 2018-07-17 | 2020-05-20 |
| CVE-2018-14354 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitr... | 9.8 - CRITICAL | 2018-07-17 | 2020-08-24 |
| CVE-2018-14353 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c has an integer ... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2018-14352 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c does not leave ... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2018-14351 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a long IMAP status mai... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2018-14350 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2018-14349 | An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without ... | 9.8 - CRITICAL | 2018-07-17 | 2020-05-20 |
| CVE-2014-9116 | The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which ... | 5 - MEDIUM | 2014-12-02 | 2018-10-30 |
| CVE-2014-0467 | Buffer overflow in copy.c in Mutt before 1.5.23 allows remote attackers to cause a denial of service (crash) via a crafted RF... | 5 - MEDIUM | 2014-03-14 | 2018-10-30 |
Known software with vulnerabilities from Mutt
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Mutt | Mutt | 1.5 |