CVE-2016-1000282: Critical severity vulnerability that affects Haraka

Severity: Critical

CVSS Score: 9.8

Haraka version 2.8.8 and earlier comes with a plugin for processing attachments for zip files. Versions 2.8.8 and earlier can be vulnerable to command injection.