← back
CVE-2023-41259

CVE-2023-41259

EPSS 0.7%CWE-200
Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Disclosure via fake or spoofed RT email headers in an email message or a mail-gateway REST API call.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.bestpractical.com/release-notes/rt/4.4.7https://docs.bestpractical.com/release-notes/rt/5.0.5https://docs.bestpractical.com/release-notes/rt/index.htmlhttps://lists.debian.org/debian-lts-announce/2023/10/msg00046.html