CVE-2021-31988

Summary

A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to add the Carriage Return and Line Feed (CRLF) control characters and include arbitrary SMTP headers in the generated test email.

Affected Software

VendorProductVersion RangeStatus
Axis Communications ABAXIS OSAXIS OS 5.51 or lateraffected

Weaknesses

  • CWE-1286: CWE-1286: Improper Validation of Syntactic Correctness of Input

ADP Enrichment

CVE Program Container

Additional References

References