CVE-2024-6923

There is a MEDIUM severity vulnerability affecting CPython. The email module didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized.

Fixed

LOW (3.0)

T
Tim Bastin detected CVE-2024-6923 with a risk of 2.54
main
T
Tim Bastin fixed CVE-2024-6923
main
T
Tim Bastin detected CVE-2024-6923 with a risk of 2.54
main
System updated the risk assessment to 1.27
main
System recalculated raw risk assessment
System updated the risk assessment to 2.54
main
System recalculated raw risk assessment
System updated the risk assessment to 1.27
main
System recalculated raw risk assessment
System updated the risk assessment from 1.27 to 0.63
main
System recalculated raw risk assessment
System updated the risk assessment from 0.63 to 1.27
main
System recalculated raw risk assessment
System updated the risk assessment from 1.27 to 2.54
main
System recalculated raw risk assessment
System updated the risk assessment from 2.54 to 1.27
main
System recalculated raw risk assessment
System detected CVE-2024-6923 with scanner: container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning
main
System fixed CVE-2024-6923
main
System detected CVE-2024-6923 with a risk of 1.27
main
System detected CVE-2024-6923 with scanner: container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning github.com/l3montree-dev/devguard/cmd/devguard-scanner/container-scanning
main
System fixed CVE-2024-6923
main
System detected CVE-2024-6923 with a risk of 1.27
main
T
Tim Bastin fixed CVE-2024-6923
main
System updated the risk assessment from 1.27 to 2.54
main
System recalculated raw risk assessment
S
Sebastian Kawelke updated the risk assessment from 2.54 to 2.75
main
Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high
S
Sebastian Kawelke updated the risk assessment from 2.75 to 3.05
main
Confidentiality Requirement updated: low -> high

Reopen this vulnerability

Last calculated at:

Affected component

debian/python3.11

Installed version:

3.11.2-6

Fixed in:

no patch available

Show in dependency graph

/🛡️ DevGuard
Group
/🧩 DevGuard CI-Components
Repository

CVE-2024-6923

Reopen this vulnerability

Affected component

Management decisions across the organization