Lucene search
K

47 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: dovecot (TSSA-2024:0516)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0516 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.01284EPSS
Exploits2References3
Amazon
Amazon
added 2024/12/12 12:0 a.m.5 views

Medium: dovecot

Issue Overview: Dovecot reports: A DoS is possible with a large number of address headers or abnormally large email headers. CVE-2024-23184 Dovecot reports: A DoS is possible with a large number of address headers or abnormally large email headers. CVE-2024-23185 Affected Packages: dovecot Issue...

7.5CVSS6.8AI score0.01284EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.9 views

Amazon Linux 2023 : dovecot, dovecot-devel, dovecot-mysql (ALAS2023-2024-785)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-785 advisory. Dovecot reports: A DoS is possible with a large number of address headers or abnormally large email headers. CVE-2024-23184 Dovecot reports: A DoS is possible with a large number of address...

7.5CVSS6.8AI score0.01284EPSS
Exploits2References6
Rockylinux
Rockylinux
added 2024/09/30 2:30 p.m.15 views

dovecot security update

An update is available for dovecot. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Dovecot is an IMAP server for Linux and other UNIX-like systems, written...

7.5CVSS7.5AI score0.01284EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/09/25 12:0 a.m.10 views

AlmaLinux 8 : dovecot (ALSA-2024:6973)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6973 advisory. dovecot: using a large number of address headers may trigger a denial of service CVE-2024-23184 dovecot: very large headers can cause resource exhaustion...

7.5CVSS7.2AI score0.01284EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2024/09/24 2:57 a.m.320 views

Moderate: Red Hat Security Advisory: dovecot security update

An update for dovecot is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.8AI score0.01284EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.16 views

RHEL 8 : dovecot (RHSA-2024:6973)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6973 advisory. Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3...

7.5CVSS7.3AI score0.01284EPSS
Exploits2References7
OSV
OSV
added 2024/09/24 12:0 a.m.12 views

ALSA-2024:6973 Moderate: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

7.5CVSS6.9AI score0.01284EPSS
Exploits2References6
AlmaLinux
AlmaLinux
added 2024/09/24 12:0 a.m.31 views

Moderate: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

7.5CVSS8AI score0.01284EPSS
Exploits2References6
Oracle linux
Oracle linux
added 2024/09/24 12:0 a.m.20 views

dovecot security update

1:2.3.16-6 - fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message RHEL-55219 - fix CVE-2024-23184: using a large number of address headers may trigger a denial of service RHEL-55206...

7.5CVSS7.3AI score0.01284EPSS
Exploits2
Rockylinux
Rockylinux
added 2024/09/17 12:55 a.m.12 views

dovecot security update

An update is available for dovecot. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Dovecot is an IMAP server for Linux and other UNIX-like systems, written...

7.5CVSS7.5AI score0.01284EPSS
Exploits2
OpenVAS
OpenVAS
added 2024/09/17 12:0 a.m.10 views

Ubuntu: Security Advisory (USN-7013-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01284EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2024/09/11 12:0 a.m.17 views

AlmaLinux 9 : dovecot (ALSA-2024:6529)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6529 advisory. dovecot: using a large number of address headers may trigger a denial of service CVE-2024-23184 dovecot: very large headers can cause resource exhaustion...

7.5CVSS7.2AI score0.01284EPSS
Exploits2References3
Circl
Circl
added 2024/09/10 6:25 p.m.4 views

CVE-2024-23184

creationtimestamp| type| source ---|---|--- 2024-09-10 18:25:29+00:00| seen| https://t.me/cvedetector/5255...

5CVSS7AI score0.00839EPSS
Exploits2References1
OSV
OSV
added 2024/09/10 3:15 p.m.1 views

DEBIAN-CVE-2024-23184

Having a large number of address headers From, To, Cc, Bcc, etc. becomes excessively CPU intensive. With 100k header lines CPU usage is already 12 seconds, and in a production environment we observed 500k header lines taking 18 minutes to parse. Since this can be triggered by external actors...

5CVSS7.1AI score0.00839EPSS
Exploits2References1
CVE
CVE
added 2024/09/10 2:33 p.m.105 views

CVE-2024-23184

CVE-2024-23184 affects the Dovecot IMAP/POP3 server. The root issue is that parsing a large number of email address headers (From, To, Cc, Bcc, etc.) is highly CPU-intensive, leading to potential denial of service when attackers send crafted messages that trigger resource exhaustion. The availabl...

5CVSS6.7AI score0.00839EPSS
Exploits2References4
Debian CVE
Debian CVE
added 2024/09/10 2:33 p.m.15 views

CVE-2024-23184

Having a large number of address headers From, To, Cc, Bcc, etc. becomes excessively CPU intensive. With 100k header lines CPU usage is already 12 seconds, and in a production environment we observed 500k header lines taking 18 minutes to parse. Since this can be triggered by external actors...

5CVSS7.1AI score0.00839EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2024/09/10 11:45 a.m.30 views

Moderate: Red Hat Security Advisory: dovecot security update

An update for dovecot is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.8AI score0.01284EPSS
Exploits2References3
OSV
OSV
added 2024/09/10 12:0 a.m.15 views

ALSA-2024:6529 Moderate: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

7.5CVSS6.9AI score0.01284EPSS
Exploits2References6
Oracle linux
Oracle linux
added 2024/09/10 12:0 a.m.312 views

dovecot security update

1:2.3.16-11.1 - fix CVE-2024-23184: using a large number of address headers may trigger a denial of service RHEL-55211 - fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message RHEL-55225...

7.5CVSS6.2AI score0.01284EPSS
Exploits2
Rows per page
Query Builder