CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
97.0%
It was discovered that Dovecot incorrectly handled parsing certain email
addresses. A remote attacker could use this issue to cause Dovecot to
crash, resulting in a denial of service, or possibly obtain sensitive
information. (CVE-2017-14461)
It was discovered that Dovecot incorrectly handled TLS SNI config lookups.
A remote attacker could possibly use this issue to cause Dovecot to crash,
resulting in a denial of service. (CVE-2017-15130)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 17.10 | noarch | dovecot-core | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-dbg | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-dev | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-gssapi | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-imapd | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-ldap | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-lmtpd | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-managesieved | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-mysql | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
Ubuntu | 17.10 | noarch | dovecot-pgsql | < 1:2.2.27-3ubuntu1.3 | UNKNOWN |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
97.0%