PT-2026-36773 · Mutt · Mutt

Evilrabbit

·

Published

2026-05-04

·

Updated

2026-05-09

·

CVE-2026-43860

CVSS v3.1

3.7

Low

VectorAV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions mutt versions prior to 2.3.2
Description An issue exists where the hash passwd is occasionally truncated by one byte during IMAP auth cram MD5 digest processes.
Recommendations Update to version 2.3.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

CVE-2026-43860
OESA-2026-2200

Affected Products

Mutt