Unrated severityNVD Advisory· Published May 20, 2022· Updated Aug 3, 2024
CVE-2022-31245
CVE-2022-31245
Description
mailcow before 2022-05d allows a remote authenticated user to inject OS commands and escalate privileges to domain admin via the --debug option in conjunction with the ---PIPEMESS option in Sync Jobs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: < 2022-05d
Patches
Vulnerability mechanics
References
1- github.com/mailcow/mailcow-dockerized/releases/tag/2022-05dmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.