Skip to main content

CWE-162

Improper Neutralization of Trailing Special Elements

1 CVEs Avg CVSS 2.1 MITRE
0
CRITICAL
0
HIGH
0
MEDIUM
1
LOW
0
POC
0
KEV

Monthly

CVE-2026-47241 Ruby LOW PATCH GHSA Monitor

{0}` or `{0+}`, allowing a smuggled literal-continuation marker to reach the IMAP server and cause it to absorb the next client command - hanging the issuing thread and, in multi-threaded environments, also the thread that sent the follow-up command. Rated low severity by the maintainers; no public exploit identified at time of analysis, but any application passing untrusted input to the affected raw argument parameters is at risk.

Denial Of Service Command Injection
NVD GitHub VulDB
CVSS 4.0
2.1
EPSS
0.4%
EPSS 0% CVSS 2.1
LOW PATCH Monitor

{0}` or `{0+}`, allowing a smuggled literal-continuation marker to reach the IMAP server and cause it to absorb the next client command - hanging the issuing thread and, in multi-threaded environments, also the thread that sent the follow-up command. Rated low severity by the maintainers; no public exploit identified at time of analysis, but any application passing untrusted input to the affected raw argument parameters is at risk.

Denial Of Service Command Injection
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy