CVE-2018-18898
Description
The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.389
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| RFC close address list parsing (USN-4517-1) libemail-address-list-perl_0.05-1+deb9u1build0.16.04.1_all.deb | Linux |
| RFC close address list parsing (USN-4517-1) libemail-address-list-perl_0.05-1+deb9u1build0.18.04.1_all.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234