Vulnerability Details CVE-2018-16745
An issue was discovered in mgetty before 1.2.1. In fax_notify_mail() in faxrec.c, the mail_to parameter is not sanitized. It could allow a buffer overflow if long untrusted input can reach it.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2018-16745
-
cpe:2.3:a:mgetty_project:mgetty:-
-
cpe:2.3:a:mgetty_project:mgetty:1.1.28