CVE-2020-7769

Summary

This affects the package nodemailer before 6.4.16. Use of crafted recipient email addresses may result in arbitrary command flag injection in sendmail transport for sending mails.

Affected Software

VendorProductVersion RangeStatus
n/anodemailerunspecified < 6.4.16affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References