Required CVE Record Information
Description
Haraka version 2.8.8 and earlier comes with a plugin for processing attachments for zip files. Versions 2.8.8 and earlier can be vulnerable to command injection.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.