Security Advisory

CVE-2021-23400

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-29 11:45:11

Last updated 2024-09-16 22:56:23

Assigner snyk

State PUBLISHED

Description

The package nodemailer before 6.6.1 are vulnerable to HTTP Header Injection if unsanitized user input that may contain newlines and carriage returns is passed into an address object.

← Browse all CVEs View on cve.org ↗