Home/Product/mutt
Product

mutt

46 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-49395
all versions
In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferrin
5.3MEDIUM
 CVE-2024-49394
all versions
In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse
5.3MEDIUM
 CVE-2024-49393
all versions
In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercep
6.5MEDIUM
 CVE-2023-4875
> 1.5.2 and < 2.2.12
Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12
2.2LOW
 CVE-2023-4874
> 1.5.2 and < 2.2.12
Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12
4.3MEDIUM
 CVE-2022-1328
>= 0.94.13 and < 2.2.3
Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line
4.3MEDIUM
 CVE-2021-32055
>= 1.11.0 and < 2.0.7
Mutt 1.11.0 through 2.0.x before 2.0.7 (and NeoMutt 2019-10-25 through 2021-05-04) has a $imap_qresync issue in which imap/util.c
9.1CRITICAL
 CVE-2021-3181
<= 2.0.4
rfc822.c in Mutt through 2.0.4 allows remote attackers to cause a denial of service (mailbox unavailability) by sending email mess
6.5MEDIUM
 CVE-2020-28896
< 2.0.2
Mutt before 2.0.2 and NeoMutt before 2020-11-20 did not ensure that $ssl_force_tls was processed if an IMAP server's initial serve
5.3MEDIUM
 CVE-2020-14954
< 1.14.4
Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server
5.9MEDIUM
 CVE-2020-14154
< 1.14.3
Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired int
4.8MEDIUM
 CVE-2020-14093
< 1.14.3
Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.
5.9MEDIUM
 CVE-2005-2351
<= 1.5.20
Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of requests to mutt temporary files.
5.5MEDIUM
 CVE-2018-14362
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe
9.8CRITICAL
 CVE-2018-14359
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They have a buffer overflow via base64 data.
9.8CRITICAL
 CVE-2018-14358
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for
9.8CRITICAL
 CVE-2018-14357
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary c
9.8CRITICAL
 CVE-2018-14356
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a zero-length UID.
9.8CRITICAL
 CVE-2018-14355
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a
5.3MEDIUM
 CVE-2018-14354
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary c
9.8CRITICAL
 CVE-2018-14353
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c has an integer under
9.8CRITICAL
 CVE-2018-14352
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c does not leave room
9.8CRITICAL
 CVE-2018-14351
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a long IMAP status mailbox
9.8CRITICAL
 CVE-2018-14350
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for
9.8CRITICAL
 CVE-2018-14349
< 1.10.1
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without a mes
9.8CRITICAL
 CVE-2014-9116
all versions
The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allow
 CVE-2014-0467
<= 1.5.22
Buffer overflow in copy.c in Mutt before 1.5.23 allows remote attackers to cause a denial of service (crash) via a crafted RFC2047
 CVE-2011-1429
all versions
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows m
 CVE-2009-3766
>= 1.5.16 and < 1.5.19
mutt_ssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's
 CVE-2009-3765
all versions
mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subj
 CVE-2009-1390
all versions
Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) GnuTLS (mutt_ssl_gnutls.c), allows connections when only one TLS
 CVE-2007-2683
all versions
Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which trigg
 CVE-2007-1268
<= 1.5.13
Mutt 1.5.13 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Mutt from visually dist
 CVE-2006-5298
<= 1.5.12
The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been cr
 CVE-2006-5297
<= 1.5.12
Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS files
 CVE-2006-3242
all versions
Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and earlier allows remote attack
 CVE-2005-2642
all versions
Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt 1.5.10 allows remote attackers to execute arbitrary code, p
 CVE-2004-0078
all versions
Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a d
 CVE-2003-0300
all versions
The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large li
 CVE-2003-0299
all versions
The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and pos
 CVE-2003-0167
all versions
Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remo
 CVE-2003-0140
all versions
Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Bals
 CVE-2002-0001
<= 1.2.5.1
Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbi
 CVE-2001-0473
<= 1.2.5
Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
 CVE-1999-0940
all versions
Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages.
 CVE-1999-0941
all versions
Mutt mail client allows a remote attacker to execute commands via shell metacharacters.
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin