CVE-2018-14354 log

Severity Medium
Remote Yes
Type Arbitrary command execution
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscription.
Group Package Affected Fixed Severity Status Ticket
AVG-740 neomutt 20180622-2 20180716-1 High Fixed