Lucene search
MitreCVELIST:CVE-2019-18928HistoryNov 15, 2019 - 3:45 a.m.
CVE-2019-18928
2019-11-1503:45:16
mitre
www.cve.org
8
Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request may be interpreted in the authentication context of an unrelated previous request that arrived over the same connection.
References
lists.debian.org/debian-lts-announce/2022/06/msg00013.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAGKPZDXQ6KRUGQVRAO6N4PCINP6KS5F/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHV3TUU53WCKJ3BBRK2EHAF44MSZEFK6/
www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html
www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html
Related
altlinux
altlinux
Security fix for the ALT Linux 9 package cyrus-imapd version 3.0.12-alt1
2019-11-20 00:00:00
veracode
veracode
Privilege Escalation
2020-11-05 03:10:36
openvas
openvas
Fedora Update for cyrus-imapd FEDORA-2019-393e1cef4d
2019-12-08 00:00:00
Cyrus IMAP 2.5.x < 2.5.14, 3.0.x < 3.0.12 Privilege Escalation Vulnerability
2019-11-18 00:00:00
Fedora Update for cyrus-imapd FEDORA-2019-03be160f9c
2020-01-09 00:00:00
nessus
nessus
Fedora 31 : cyrus-imapd (2019-03be160f9c)
2019-12-05 00:00:00
Fedora 30 : cyrus-imapd (2019-393e1cef4d)
2019-12-05 00:00:00
CentOS 8 : cyrus-imapd (CESA-2020:4655)
2021-02-01 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: cyrus-imapd-3.0.12-1.fc30
2019-12-05 01:12:37
[SECURITY] Fedora 31 Update: cyrus-imapd-3.0.12-1.fc31
2019-12-05 01:42:52
[SECURITY] Fedora 31 Update: cyrus-imapd-3.0.13-1.fc31
2020-01-05 00:42:32
prion
prion
Privilege escalation
2019-11-15 04:15:00
ubuntucve
ubuntucve
CVE-2019-18928
2019-11-15 00:00:00
debiancve
debiancve
CVE-2019-18928
2019-11-15 04:15:10
redhatcve
redhatcve
CVE-2019-18928
2019-11-21 14:43:43
osv
osv
CVE-2019-18928
2019-11-15 04:15:10
cyrus-imapd - security update
2022-06-20 00:00:00
nvd
nvd
CVE-2019-18928
2019-11-15 04:15:10
cve
cve
CVE-2019-18928
2019-11-15 04:15:10
debian
debian
[SECURITY] [DLA 3052-1] cyrus-imapd security update
2022-06-19 22:39:52
oraclelinux
oraclelinux
cyrus-imapd security update
2020-11-10 00:00:00
almalinux
almalinux
Moderate: cyrus-imapd security update
2020-11-03 12:24:17
redhat
redhat
(RHSA-2020:4655) Moderate: cyrus-imapd security update
2020-11-03 12:24:17