CVE-2024-49395
Mutt: neomutt: bcc email header field is indirectly leaked by cryptographic info block
In short
When using PGP encryption in Mutt or Neomutt, blind carbon copy (Bcc) recipients can be indirectly discovered by analyzing the cryptographic information attached to the encrypted message, defeating the purpose of keeping them secret.
Technical detail
Mutt and Neomutt fail to utilize PGP's --hidden-recipient mode during encryption, allowing attackers to infer Bcc recipient identities from the recipients information block in the encrypted message. This disclosure requires message interception but reveals information that should remain confidential.
Summary generated and translated by AI from the official description.
In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected products
muttRed Hat · Red Hat Enterprise Linux 10Red Hat · Red Hat Enterprise Linux 7Red Hat · Red Hat Enterprise Linux 8Red Hat · Red Hat Enterprise Linux 9Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →