Lucene search
K

628 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-2914

Malware in sbrugna...

5.5CVSS6.4AI score0.01399EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-0469

Malware in sbrugna...

7.5CVSS6.4AI score0.0206EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-3593

Malware in sbrugna...

5CVSS6.4AI score0.02669EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-0948

Malware in sbrugna...

10CVSS6.4AI score0.02386EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-30996

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.03662EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.12 views

PT-2026-36987

Name of the Vulnerable Software and Affected Versions net-imap affected versions not specified Description A hostile IMAP server can trigger a computational denial-of-service attack on the client process during authentication using SCRAM-SHA1 or SCRAM-SHA256. By sending an arbitrarily large PBKDF...

9.8CVSS6AI score0.00429EPSS
Exploits0References43
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.7 views

CVE-2021-38370

In Alpine before 2.25, untagged responses from an IMAP server are accepted before STARTTLS...

5.9CVSS6.8AI score0.01565EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.5 views

CVE-2021-38372

In KDE Trojita 0.7, man-in-the-middle attackers can create new folders because untagged responses from an IMAP server are accepted before STARTTLS...

4.3CVSS6.9AI score0.00788EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:28 p.m.7 views

CVE-2010-4717

Multiple stack-based buffer overflows in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via a long 1 LIST or 2 LSUB command...

6.5CVSS8.1AI score0.09932EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:13 a.m.16 views

CVE-2013-4790

Open-Xchange AppSuite before 7.0.2 rev14, 7.2.0 before rev11, 7.2.1 before rev10, and 7.2.2 before rev9 relies on user-supplied data to predict the IMAP server hostname for an external domain name, which allows remote authenticated users to discover e-mail credentials of other users in...

3.5CVSS6.5AI score0.0093EPSS
Exploits2References1
Redos
Redos
added 2025/05/13 12:0 a.m.22 views

ROS-2-525

2.525 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS8.1AI score0.03582EPSS
Exploits1
Redos
Redos
added 2025/05/13 12:0 a.m.27 views

ROS-2-484

2.484 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.2AI score0.03582EPSS
Exploits1
Redos
Redos
added 2025/05/13 12:0 a.m.17 views

ROS-2-574

2.574 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.6AI score0.03582EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2025/04/11 9:55 a.m.6 views

SUSE CVE-2010-2777

Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command...

9CVSS8.4AI score0.10388EPSS
Exploits4References4
Ubuntu
Ubuntu
added 2025/04/07 1:55 p.m.81 views

USN-7418-1: Ruby vulnerabilities

It was discovered that Ruby incorrectly handled parsing of an XML document that has specific XML characters in an attribute value using REXML gem. An attacker could use this issue to cause Ruby to crash, resulting in a denial of service. This issue only affected in Ubuntu 22.04 LTS, Ubuntu 24.04...

7.5CVSS7.1AI score0.02064EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-38370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Alpine before 2.25, untagged responses from an IMAP server are accepted before STARTTLS. CVE-2021-38370 Note that Nessus relies on the presence of the packag...

5.9CVSS5.9AI score0.01565EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/01/23 12:0 a.m.14 views

Ubuntu: Security Advisory (USN-7224-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.0307EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/01/22 8:39 p.m.16 views

USN-7224-1: Cyrus IMAP Server vulnerabilities

It was discovered that non-authentication-related HTTP requests could be interpreted in an authentication context by a Cyrus IMAP Server when multiple requests arrived over the same connection. An unauthenticated attacker could possibly use this issue to perform a privilege escalation attack. Thi...

9.8CVSS7.1AI score0.0307EPSS
Exploits0
OSV
OSV
added 2024/12/19 9:31 p.m.22 views

GHSA-RV83-H68Q-C4WQ GoPhish sends cleartext passwords

Insufficiently Protected Credentials in the Mail Server Configuration in GoPhish v0.12.1 allows an attacker to access cleartext passwords for the configured IMAP and SMTP servers...

7.5CVSS7.5AI score0.00358EPSS
Exploits0References3
NVD
NVD
added 2024/12/19 7:15 p.m.45 views

CVE-2024-55196

Insufficiently Protected Credentials in the Mail Server Configuration in GoPhish v0.12.1 allows an attacker to access cleartext passwords for the configured IMAP and SMTP servers...

7.5CVSS0.00358EPSS
Exploits0References1
Rows per page
Query Builder