Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g., from a man-in-the-middle attacker) and evaluates it in a TLS context, aka "response injection."

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Canonical
  • Ubuntu Linux
Debian
  • Debian Linux
Fedoraproject
  • Fedora
Mutt
  • Mutt
Neomutt
  • Neomutt
Opensuse
  • Leap

Configuration 1 [-]

cpe:2.3:a:mutt:mutt:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:a:neomutt:neomutt:*:*:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

Configuration 5 [-]

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 6 [-]

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

Configuration 7 [-]

OR cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*

No data.

References
Link Providers
http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200615/000023.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00064.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00070.html cve-icon cve-icon
http://www.mutt.org/ cve-icon cve-icon
https://github.com/neomutt/neomutt/commit/fb013ec666759cb8a9e294347c7b4c1f597639cc cve-icon cve-icon
https://github.com/neomutt/neomutt/releases/tag/20200619 cve-icon cve-icon
https://gitlab.com/muttmua/mutt/-/commit/c547433cdf2e79191b15c6932c57f1472bfb5ff4 cve-icon cve-icon
https://gitlab.com/muttmua/mutt/-/issues/248 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2020/06/msg00039.html cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2020/06/msg00040.html cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EFMEILCBKMZRRZDMUGWLVN4PQQ4VTAZE/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K3LXFVPTLK4PNHL6MPKJNJQJ25CH7GLQ/ cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2020-14954 cve-icon
https://security.gentoo.org/glsa/202007-57 cve-icon cve-icon
https://usn.ubuntu.com/4403-1/ cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2020-14954 cve-icon
https://www.debian.org/security/2020/dsa-4707 cve-icon cve-icon
https://www.debian.org/security/2020/dsa-4708 cve-icon cve-icon
History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.11936}

 epss

{'score': 0.05464}

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.066}

 epss

{'score': 0.11936}
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-06-21T16:55:41

Updated: 2024-08-04T13:00:52.083Z

Reserved: 2020-06-21T00:00:00

Link: CVE-2020-14954

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-06-21T17:15:09.603

Modified: 2024-11-21T05:04:30.410

Link: CVE-2020-14954

cve-icon Redhat

Severity : Moderate

Publid Date: 2020-06-16T00:00:00Z

Links: CVE-2020-14954 - Bugzilla