CVE-2021-46686

Name of the Vulnerable Software and Affected Versions acmailer CGI versions 4.0.3 and earlier acmailer DB versions 1.1.5 and earlier

Description An issue exists with the improper neutralization of special elements used in an OS command, which can lead to the execution of arbitrary OS commands by an attacker. This issue is related to OS Command Injection.

Recommendations For acmailer CGI versions 4.0.3 and earlier, update to a version later than 4.0.3 to resolve the issue. For acmailer DB versions 1.1.5 and earlier, update to a version later than 1.1.5 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable components until a patch is available.