Vulnerabilities > Mailcow > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-11 | CVE-2022-31138 | OS Command Injection vulnerability in Mailcow Mailcow: Dockerized mailcow is a mailserver suite. | 9.0 |
| 2022-05-20 | CVE-2022-31245 | OS Command Injection vulnerability in Mailcow Mailcow: Dockerized mailcow before 2022-05d allows a remote authenticated user to inject OS commands and escalate privileges to domain admin via the --debug option in conjunction with the ---PIPEMESS option in Sync Jobs. | 9.0 |