CVE-2024-0770

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Jan 21, 2024

Updated: May 17, 2024

CWE ID 276

Summary

CVE-2023-52354 is a vulnerability affecting chasquid before version 1.13. This issue permits SMTP smuggling due to the acceptance of lines terminated with Line Feeds (LF). An attacker can exploit this flaw to inject and execute malicious SMTP commands, potentially leading to unauthorized access or data exfiltration. Users are strongly encouraged to update their chasquid installation to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uOe5AV
https://www.cve.org/CVERecord?id=CVE-2024-0770
https://nvd.nist.gov/vuln/detail/CVE-2024-0770

Back to Vulnerability Database

CVE-2024-0770

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations