Description
MailDev 2 through 2.1.0 allows Remote Code Execution via a crafted Content-ID header for an e-mail attachment, leading to lib/mailserver.js writing arbitrary code into the routes.js file.
References (5)
Core 5
Core References
Various Sources
https://gist.github.com/stypr/fe2003f00959f7e3d92ab9d5260433f8
Various Sources
https://github.com/maildev/maildev/releases
Issue Tracking
https://github.com/maildev/maildev/issues/467
Scores
CVSS v3
9.1
EPSS
0.1303
EPSS Percentile
94.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-352
Status
published
Products (1)
npm/maildev
2.0.0-beta1npm
Published
Apr 05, 2024
Tracked Since
Feb 18, 2026