Lucene search
K

9 matches found

NVD
NVD
added 2026/06/15 9:17 p.m.9 views

CVE-2026-48885

Unauthenticated Cross Site Scripting XSS in HollerBox = 2.3.10.1 versions...

7.1CVSS0.00175EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.11 views

EUVD-2026-36859

Unauthenticated Cross Site Scripting XSS in HollerBox = 2.3.10.1 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
ALT Linux
ALT Linux
added 2020/05/21 12:0 a.m.30 views

Security fix for the ALT Linux 9 package dovecot version 2.3.10.1-alt1

2.3.10.1-alt1 built May 21, 2020 Gleb Fotengauer-Malinovskiy in task 252013 May 20, 2020 Gleb Fotengauer-Malinovskiy - Updated to 2.3.10.1 fixes CVE-2020-10957, CVE-2020-10958, CVE-2020-10967...

5CVSS6.4AI score0.08153EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/05/19 12:0 a.m.478 views

Open-Xchange Dovecot 2.3.10 Null Pointer Dereference / Denial Of Service

------------------ Open-Xchange Security Advisory 2020-05-18 Product: Dovecot Vendor: OX Software GmbH Internal reference: DOV-3784 Vulnerability type: NULL pointer dereference CWE-476 Vulnerable version: 2.3.0 - 2.3.10 Vulnerable component: submission, lmtp Report confidence: Confirmed Solution...

0.2AI score0.08153EPSS
Exploits5
OSV
OSV
added 2020/05/18 3:15 p.m.5 views

ALPINE-CVE-2020-10967

In Dovecot before 2.3.10.1, remote unauthenticated attackers can crash the lmtp or submission process by sending mail with an empty localpart...

5.3CVSS7.2AI score0.08153EPSS
Exploits3References1
OSV
OSV
added 2020/05/18 2:15 p.m.2 views

ALPINE-CVE-2020-10958

In Dovecot before 2.3.10.1, a crafted SMTP/LMTP message triggers an unauthenticated use-after-free bug in submission-login, submission, or lmtp, and can lead to a crash under circumstances involving many newlines after a command...

5.3CVSS7AI score0.06122EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2020/05/18 12:0 a.m.2 views

PT-2020-12455 · Dovecot +7 · Dovecot +7

Name of the Vulnerable Software and Affected Versions: Dovecot versions prior to 2.3.10.1 Description: The issue allows remote unauthenticated attackers to crash the lmtp or submission process by sending mail with an empty localpart. Recommendations: For versions prior to 2.3.10.1, update to...

9.8CVSS6.4AI score0.62579EPSS
Exploits14References91
Positive Technologies
Positive Technologies
added 2020/05/18 12:0 a.m.2 views

PT-2020-12448 · Dovecot +6 · Dovecot +6

Name of the Vulnerable Software and Affected Versions: Dovecot versions prior to 2.3.10.1 Description: The issue arises from sending malformed parameters to a NOOP command, which causes a NULL Pointer Dereference and crash in submission-login, submission, or lmtp. This can be triggered without...

9.8CVSS6.4AI score0.62579EPSS
Exploits14References86
Prion
Prion
added 2019/07/19 3:15 p.m.19 views

Cross site scripting

ZmartZone IAM modauthopenidc 2.3.10.1 and earlier is affected by: Cross Site Scripting XSS. The impact is: Redirecting the user to a phishing page or interacting with the application on behalf of the user. The component is: File: src/modauthopenidc.c, Line: 3109. The fixed version is: 2.3.10.2...

4.3CVSS6AI score0.01274EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder