CVE-2024-48938

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-48938
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-48938.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-48938
Downstream
Published
2024-10-11T21:15:07.387Z
Modified
2026-03-14T14:56:50.495404Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email. Parsing the content of emails where HTML code is copied from Microsoft Word could lead to high CPU usage and block the parsing process.

References

Affected packages

Git /

Affected ranges

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-48938.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "6.0.0"
            },
            {
                "fixed": "6.1.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "6.5.1"
            },
            {
                "last_affected": "6.5.10"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "7.0.1"
            },
            {
                "last_affected": "7.0.16"
            }
        ]
    }
]