Description
During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted by some mail servers.
Published: 2025-02-28
Score: 2.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: Email header misinterpretation
Action: Apply Patch
AI Analysis

Impact

During folding of email address lists, a comma at the end of a folded line is incorrectly Unicode‑encoded when the line is processed for encoding; the comma should remain plain. This misencoding can cause mail servers to misinterpret the recipient address, potentially leading to delivery to an unintended recipient; the possibility of spoofing is inferred but not explicitly stated in the CVE description.

Affected Systems

The flaw exists in CPython, the reference interpreter for Python, and affects any deployment that processes email headers containing folded address lists. Affected releases include all CPython versions that contain the unpatched header‑folding code. Specific version details are not listed in the advisory, but all CPython releases prior to the application of the commits referenced in the advisory are impacted.

Risk and Exploitability

The CVSS score of 2.3 indicates low severity, and the EPSS score of less than 1% suggests a very low probability of exploitation at present. The vulnerability does not allow remote code execution or privilege escalation; it mainly permits email header manipulation, which might be leveraged for phishing or deliverability issues (these implications are inferred from the manipulation ability but not stated explicitly in the CVE description). The flaw is not listed in the CISA KEV catalog, and no publicly known exploits have been documented. Attackers would need to craft an email with a folded address header that contains a comma incorrectly encoded, which requires send access to a mail system that processes such headers.

Generated by OpenCVE AI on April 22, 2026 at 13:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade CPython to a release that incorporates the commit(s) fixing the header‑folding issue; this patch directly addresses the improper encoding (CWE‑116) and the sequencing error (CWE‑168) identified in the advisory.
  • If an immediate upgrade is not feasible, add validation logic to your mail server or client that ensures commas remain in plain form and that folded lines are properly ordered; these checks mitigate the encoding flaw (CWE‑116) and the sequencing flaw (CWE‑168).
  • Monitor mail logs for anomalous address header parsing and apply additional filtering rules that detect percent‑encoded commas or incorrect line sequencing, thereby helping to spot and block improperly folded addresses.

Generated by OpenCVE AI on April 22, 2026 at 13:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4087-1 python3.9 security update
Debian DLA Debian DLA DLA-4354-1 pypy3 security update
EUVD EUVD EUVD-2025-5930 During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted by some mail servers.
Ubuntu USN Ubuntu USN USN-7570-1 Python vulnerabilities
History

Mon, 03 Nov 2025 21:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 15:45:00 +0000

Type Values Removed Values Added
References

Tue, 04 Mar 2025 03:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 03 Mar 2025 02:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-168
References
Metrics threat_severity

None

 cvssV3_1

{'score': 3.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N'}

threat_severity

Low

Fri, 28 Feb 2025 21:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-116

Fri, 28 Feb 2025 19:30:00 +0000

Type Values Removed Values Added
References

Fri, 28 Feb 2025 19:15:00 +0000

Type Values Removed Values Added
Description During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted by some mail servers.
Title Mishandling of comma during folding and unicode-encoding of email headers
References
Metrics cvssV4_0

{'score': 2.3, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Python Cpython
cve-icon MITRE

Status: PUBLISHED

Assigner: PSF

Published:

Updated: 2026-04-21T20:15:50.714Z

Reserved: 2025-02-28T18:49:37.957Z

Link: CVE-2025-1795

cve-icon Vulnrichment

Updated: 2025-11-03T20:57:12.370Z

cve-icon NVD

Status : Deferred

Published: 2025-02-28T19:15:36.550

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-1795

cve-icon Redhat

Severity : Low

Publid Date: 2025-02-28T18:59:31Z

Links: CVE-2025-1795 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-22T13:30:17Z

Weaknesses