Sign in Get started

← All advisories

Low severity3.7NVD Advisory· Published May 4, 2026· Updated May 5, 2026

CVE-2026-43860

CVE-2026-43860

Description

mutt before 2.3.2 sometimes truncates the hash_passwd by one byte for IMAP auth_cram MD5 digest.

Affected products

1

Mutt/Muttreferences

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/muttmua/mutt/commit/834c5a2ed0479e51e8662a31caed129f136f4805nvd

News mentions

0

No linked articles in our index yet.