7.5 High
AI Score
Confidence
Low
6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.6%
Stack-based buffer overflow in the IMAP service in SurgeMail 38k allows remote authenticated users to execute arbitrary code via a long argument to the SEARCH command. NOTE: this might overlap CVE-2007-4372.
CPE | Name | Operator | Version |
---|---|---|---|
netwin:surgemail | netwin surgemail | eq | 38k |