Skip to main content

Lettre

2 CVEs product

Monthly

CVE-2021-38189 Cargo CRITICAL POC PATCH Act Now

An issue was discovered in the lettre crate before 0.9.6 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Lettre
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2020-28247 Cargo MEDIUM PATCH This Month

The lettre library through 0.10.0-alpha for Rust allows arbitrary sendmail option injection via transport/sendmail/mod.rs. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Code Injection Lettre
NVD GitHub
CVSS 3.1
5.3
EPSS
1.5%
EPSS 1% CVSS 9.8
CRITICAL POC PATCH Act Now

An issue was discovered in the lettre crate before 0.9.6 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Lettre
NVD
EPSS 2% CVSS 5.3
MEDIUM PATCH This Month

The lettre library through 0.10.0-alpha for Rust allows arbitrary sendmail option injection via transport/sendmail/mod.rs. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Code Injection Lettre
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy