Nodemailer CVE - OpenCVE

Filtered by vendor Nodemailer Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-23400	1 Nodemailer	1 Nodemailer	2021-07-06	6.8 MEDIUM	8.8 HIGH
The package nodemailer before 6.6.1 are vulnerable to HTTP Header Injection if unsanitized user input that may contain newlines and carriage returns is passed into an address object.

Vulnerabilities (CVE)