debian · CVE-2018-14357

Quick triage

Priority: not yet assigned Published: Updated: Fri, 03 Jul 2026 00:59:42 GMT

View at Official debian advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-14357 not yet assigned priority: Debian including 2 source packages (mutt, neomutt), 10 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 10.

Description:

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.

cvelogic Threat Intelligence