Lucene search
K

10 matches found

Redos
Redos
added 2023/07/06 12:0 a.m.5 views

ROS-2-2174

2.2174 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS10AI score0.06132EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.4 views

SUSE CVE-2020-1930

A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious rule configuration .cf files can be configured to run system commands similar to CVE-2018-11805. With this bug unpatched, exploits can be injected in a number of scenarios including the same...

7.4CVSS7.3AI score0.07053EPSS
Exploits0References7
Redos
Redos
added 2021/09/08 12:0 a.m.7 views

ROS-2-2232

2.2232 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS8.1AI score0.06132EPSS
Exploits3
Redos
Redos
added 2021/09/08 12:0 a.m.6 views

ROS-2-2246

2.2246 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS7.7AI score0.61061EPSS
Exploits6
Redos
Redos
added 2021/09/08 12:0 a.m.5 views

ROS-2-2206

2.2206 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS8.1AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.7 views

ROS-2-2155

2.2155 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS7.7AI score0.23293EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2020/11/04 1:17 a.m.8 views

spamassassin: command injection via crafted configuration file

A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious rule configuration .cf files can be configured to run system commands similar to CVE-2018-11805. With this bug unpatched, exploits can be injected in a number of scenarios including the same...

9.3CVSS5.8AI score0.07053EPSS
Exploits0References4
OSV
OSV
added 2020/01/30 6:15 p.m.4 views

ALPINE-CVE-2020-1930

A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious rule configuration .cf files can be configured to run system commands similar to CVE-2018-11805. With this bug unpatched, exploits can be injected in a number of scenarios including the same...

8.1CVSS7.2AI score0.07053EPSS
Exploits0References1
OSV
OSV
added 2020/01/30 6:15 p.m.4 views

UBUNTU-CVE-2020-1930

A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious rule configuration .cf files can be configured to run system commands similar to CVE-2018-11805. With this bug unpatched, exploits can be injected in a number of scenarios including the same...

8.1CVSS7.2AI score0.07053EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2018/08/10 12:0 a.m.7 views

The vulnerability of the DNS server testing tool dnslint lies in its lack of protection for website structure, allowing attackers to execute arbitrary code.

The vulnerability of the DNS server testing tool dnslint exists because measures are not taken to protect the structure of web pages when generating reports. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file that defines the rules for...

7.6CVSS6AI score
Exploits0References1Affected Software1
Rows per page
Query Builder