CVE-2023-4874

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 9, 2023

Updated: Oct 15, 2023

CWE ID 476

CWE ID 475

Summary

CVE-2023-4874 is a newly identified vulnerability affecting the email client Mutt, specifically versions between 1.5.2 and 2.2.12. This issue arises due to a null pointer dereference, which can be triggered by viewing a maliciously crafted email. Successful exploitation could result in the termination of the Mutt application, potentially leading to data loss or unauthorized access to the user's email account. Users are advised to update their Mutt installation to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mutt
Debian

Affected Vendors

Debian

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sot2Fm
https://www.cve.org/CVERecord?id=CVE-2023-4874
https://nvd.nist.gov/vuln/detail/CVE-2023-4874

Back to Vulnerability Database