CyberRota
← Ana sayfaya dön

CVE-2026-47241

UNKNOWN · CVSS N/A EPSS %0.24 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-22T21:16:24.677 · Çekilme zamanı: 2026-06-30T18:29:38.164290+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

GitHub PoC Linkleri
github.com

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-47241
Severity
UNKNOWN
CVSS
N/A
EPSS
%0.24

Orijinal NVD Açıklaması

Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a raw string argument which is only validated to prevent CRLF injection and then sent verbatim. If this string is derived from user-controlled input, an attacker can force the next command to be absorbed as a continuation of the first command. This will cause the first command to eventually fail, but also prevents it from returning until another command is sent (from another thread). That other command will not return until the connection is closed. This vulnerability is fixed in 0.6.5 and 0.5.15.