VYPR
Medium severity6.5NVD Advisory· Published Nov 12, 2024· Updated Jun 26, 2026

CVE-2024-49393

CVE-2024-49393

Description

In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.