CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
65.7%
SQL injection vulnerability in the PostgreSQL auth module for courier 0.40 and earlier allows remote attackers to execute SQL code via the user name.
Vendor | Product | Version | CPE |
---|---|---|---|
double_precision_incorporated | courier_mta | 0.37.3 | cpe:2.3:a:double_precision_incorporated:courier_mta:0.37.3:*:*:*:*:*:*:* |
inter7 | courier-imap | 1.6 | cpe:2.3:a:inter7:courier-imap:1.6:*:*:*:*:*:*:* |