CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender.

CWE 1 Total

Learn more

CWE-347: Improper Verification of Cryptographic Signature

CVSS 1 Total

Learn more

Score	Severity	Version	Vector String
5.3	MEDIUM	3.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Product Status

Learn more

Versions 0 Total

Default Status: All versions are affected

Versions 0 Total

Default Status: All versions are unknown

Versions 0 Total

Default Status: All versions are affected

Versions 0 Total

Default Status: All versions are affected

References 2 Total

https://access.redhat.com/security/cve/CVE-2024-49394
external site
vdb-entry
bugzilla.redhat.com: RHBZ#2325330
external site
issue-tracking

Authorized Data Publishers

Learn more

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Red Hat, Inc.

Description

CWE 1 Total

CVSS 1 Total

Product Status

References 2 Total

Authorized Data Publishers

CISA-ADP