VDB

GCVE-110-MAGEIA-2022-367

GCVE-110-MAGEIA-2022-367
Advisory Published
Vulnetix · Advisory published October 13, 2022
The mailcap module does not add escape characters into commands discovered in the system mailcap file. (CVE-2015-20107) Allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. (CVE-2021-4189) The urlparse method does not sanitize input and allows characters like '\r' and '\n' in the URL path. This flaw allows an attacker to input a crafted URL, leading to injection attacks. (CVE-2022-0391)

Affected Products

VendorProductVersionsPlatforms
Mageiapython0 (affected), 2.7.18-7.5.mga8 (unaffected)
AWSconnect

Browse GCVE Records

73,280 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›