A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to add the Carriage Return and Line Feed (CRLF) control characters and include arbitrary SMTP headers in the generated test email.
References
Link | Resource |
---|---|
https://www.axis.com/files/tech_notes/CVE-2021-31988.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Axis
Published: 2021-10-05T21:48:03
Updated: 2021-10-05T21:48:03
Reserved: 2021-04-30T00:00:00
Link: CVE-2021-31988
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-05T22:15:07.937
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-31988
JSON object: View
Redhat Information
No data.
CWE