Python · Cpython · CVE-2024-6923
**Name of the Vulnerable Software and Affected Versions**
CPython (affected versions not specified)
**Description**
The issue concerns the email module in CPython, which did not properly quote newlines for email headers when serializing an email message. This allows for header injection when an email is serialized, potentially enabling a remote authenticated attacker to spoof sender identity, gain unauthorized email sending, or cause loss of control over email communication by persuading a victim to open a specially crafted email.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.