Lucene search

OpenSMTPd -- LPE and RCE in OpenSMTPD's default install

🗓️ 22 Feb 2020 00:00:00Reported by FreeBSDType

OpenSMTPd has a local privilege escalation and remote code execution vulnerabilit

Reporter	Title	Published	Views	Family All 52
Ubuntu	OpenSMTPD vulnerabilities	2 Mar 202000:00	–	ubuntu
Ubuntu	OpenSMTPD vulnerabilities	15 Mar 202100:00	–	ubuntu
Tenable Nessus	Ubuntu 18.04 LTS : OpenSMTPD vulnerabilities (USN-4294-1)	6 Mar 202000:00	–	nessus
Tenable Nessus	FreeBSD : OpenSMTPd -- LPE and RCE in OpenSMTPD's default install (f0683976-5779-11ea-8a77-1c872ccb1e42)	25 Feb 202000:00	–	nessus
Tenable Nessus	Ubuntu 16.04 ESM : OpenSMTPD vulnerabilities (USN-4875-1)	20 Oct 202300:00	–	nessus
Tenable Nessus	Debian DSA-4634-1 : opensmtpd - security update	27 Feb 202000:00	–	nessus
Tenable Nessus	FreeBSD : OpenSMTPd -- Local information disclosure (76f1ce19-5749-11ea-bff8-c85b76ce9b5a)	25 Feb 202000:00	–	nessus
Tenable Nessus	FreeBSD : OpenSMTPd -- LPE and RCE in OpenSMTPD's default install (40c75597-574a-11ea-bff8-c85b76ce9b5a)	25 Feb 202000:00	–	nessus
OpenVAS	Ubuntu: Security Advisory (USN-4294-1)	3 Mar 202000:00	–	openvas
OpenVAS	Fedora: Security Advisory for opensmtpd (FEDORA-2020-b92d7083ca)	17 Mar 202000:00	–	openvas

Source	Link
openwall	www.openwall.com/lists/oss-security/2020/02/24/5
openwall	www.openwall.com/lists/oss-security/2020/02/24/4

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	opensmtpd	6.6.4,1	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Feb 2020 00:00Current

5Medium risk

Vulners AI Score5

CVSS210

CVSS39.8

EPSS0.88795