Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
RCE
Path Traversal
Impacket
Fedora
NVD
GitHub
CVSS 3.1
9.8
EPSS
19.3%
Mutt 1.11.0 through 2.0.x before 2.0.7 (and NeoMutt 2019-10-25 through 2021-05-04) has a $imap_qresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Buffer Overflow
Information Disclosure
Mutt
Neomutt
NVD
GitHub
CVSS 3.1
9.1
EPSS
2.6%