CVE-2024-24784 | net-mail up to 1.21.7/1.22.0 on Go Display Name ParseAddressList neutralization

Inserito da Angelo Barbosa | Mar 6, 2024 | CVE

A vulnerability was found in net-mail up to 1.21.7/1.22.0 on Go and classified as problematic. This issue affects the function ParseAddressList of the component Display Name Handler. The manipulation leads to improper neutralization.

The identification of this vulnerability is CVE-2024-24784. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24784 | net-mail up to 1.21.7/1.22.0 on Go Display Name ParseAddressList neutralization

Post correlati

CVE-2023-37868 | Leap13 Premium Addons Pro Plugin up to 2.9.0 on WordPress information disclosure

CVE-2023-48783 | Fortinet FortiPortal up to 5.3.8/6.0.14/7.0.6/7.2.1 GET Request authorization (FG-IR-23-408)

CVE-2024-1869 | HP DesignJet 9220 GGW information disclosure

CVE-2023-6957 | Fluent Forms Plugin up to 5.1.9 on WordPress cross site scripting