cvedb.io
CVE-2021-31988
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2021-10-05T22:15:07.937 · Last modified 2026-06-17T03:52:38.510

Summary

A user controlled parameter related to SMTP test functionality is not correctly validated making it possible to add the Carriage Return and Line Feed (CRLF) control characters and include arbitrary SMTP headers in the generated test email.

Affected products

axis — axis_os

Does this affect you?

Add your gear to cvedb and we'll alert you only when axis ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.