CVE-2025-15366

ADVISORY - nist

Summary

The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.

EPSS Score⁠: 0.00057 (0.178)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-77⁠

Improper Neutralization of Special Elements used in a Command ('Command Injection')

ADVISORY - redhat

CWE-77⁠

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Impacted images

Advisories

NIST

CREATED

7 days ago

UPDATED

2 days ago

ADVISORY IDCVE-2025-15366⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-77⁠

CVSS SCORE

5.9medium

Debian

CREATED

6 days ago

UPDATED

1 day ago

ADVISORY IDCVE-2025-15366⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

7 days ago

UPDATED

7 days ago

ADVISORY IDCVE-2025-15366⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Bitnami

CREATED

2 days ago

UPDATED

2 days ago

ADVISORY ID

BIT-libpython-2025-15366

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.9medium

Bitnami

CREATED

2 days ago

UPDATED

2 days ago

ADVISORY ID

BIT-python-2025-15366

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.9medium

Bitnami

CREATED

2 days ago

UPDATED

2 days ago

ADVISORY ID

BIT-python-min-2025-15366

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.9medium

Red Hat

CREATED

7 days ago

UPDATED

6 days ago

ADVISORY IDCVE-2025-15366⁠

EXPLOITABILITY SCORE

2.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-77⁠

CVSS SCORE

7.1medium