Security Advisory

CVE-2024-27448

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-05 00:00:00

Last updated 2025-03-13 14:44:13

Assigner mitre

State PUBLISHED

Description

MailDev 2 through 2.1.0 allows Remote Code Execution via a crafted Content-ID header for an e-mail attachment, leading to lib/mailserver.js writing arbitrary code into the routes.js file.

← Browse all CVEs View on cve.org ↗