Security Advisory

CVE-2022-31245

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-20 14:20:21

Last updated 2024-08-03 07:11:39

Assigner mitre

State PUBLISHED

Description

mailcow before 2022-05d allows a remote authenticated user to inject OS commands and escalate privileges to domain admin via the --debug option in conjunction with the ---PIPEMESS option in Sync Jobs.

← Browse all CVEs View on cve.org ↗