CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
Percentile
56.4%
checkpassword-reply in Dovecot before 2.2.7 performs setuid operations to a user who is authenticating, which allows local users to bypass authentication and access virtual email accounts by attaching to the process and using a restricted file descriptor to modify account information in the response to the dovecot-auth server.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | dovecot | < 1:2.2.9-1 | dovecot_1:2.2.9-1_all.deb |
Debian | 11 | all | dovecot | < 1:2.2.9-1 | dovecot_1:2.2.9-1_all.deb |
Debian | 999 | all | dovecot | < 1:2.2.9-1 | dovecot_1:2.2.9-1_all.deb |
Debian | 13 | all | dovecot | < 1:2.2.9-1 | dovecot_1:2.2.9-1_all.deb |