Lucene search
K

82 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Wireshark

In Wireshark versions 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This issue was addressed in the epan/dissectors/packet-multipart.c file by correcting the deallocation of invalid MIME parts...

7.5CVSS7.4AI score0.04918EPSS
Exploits1References1
NVD
NVD
added 2026/02/19 9:18 p.m.11 views

CVE-2026-26312

Stalwart is a mail and collaboration server. A denial-of-service vulnerability exists in Stalwart Mail Server versions 0.13.0 through 0.15.4 where accessing a specially crafted email containing malformed nested message/rfc822 MIME parts via IMAP or JMAP causes excessive CPU and memory consumption...

6.5CVSS0.00353EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/19 9:5 p.m.26 views

CVE-2026-26312 Stalwart Mail Server has Out-of-Memory Denial of Service via Malformed Nested MIME Messages

Stalwart is a mail and collaboration server. A denial-of-service vulnerability exists in Stalwart Mail Server versions 0.13.0 through 0.15.4 where accessing a specially crafted email containing malformed nested message/rfc822 MIME parts via IMAP or JMAP causes excessive CPU and memory consumption...

6.5CVSS0.00353EPSS
Exploits1References1
CVE
CVE
added 2026/02/19 9:5 p.m.16 views

CVE-2026-26312

Stalwart Mail Server vulnerable in versions 0.13.0–0.15.4 to an out-of-memory Denial-of-Service when processing specially crafted emails with malformed nested message/rfc822 MIME parts via IMAP or JMAP. The issue stems from the mail-parser crate producing cyclical references that the server then ...

6.5CVSS5.6AI score0.00353EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.7 views

Stalwart Mail Server 安全漏洞

Stalwart Mail Server is an integrated email server developed by Stalwart Labs. Vulnerabilities exist in versions 0.13.0 to 0.15.4 of Stalwart Mail Server. These vulnerabilities stem from processing specially crafted emails that contain malformed message/rfc822 MIME parts. This can lead to excessi...

6.5CVSS5.8AI score0.00353EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5405

Malware in sbrugna...

4.3CVSS6.4AI score0.01244EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5403

Malware in sbrugna...

4.3CVSS6.4AI score0.01244EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5404

Malware in sbrugna...

4.3CVSS6.4AI score0.02036EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5406

Malware in sbrugna...

4.3CVSS6.4AI score0.01244EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:2 a.m.5 views

SUSE CVE-2009-3237

Multiple cross-site scripting XSS vulnerabilities in Horde Application Framework 3.2 before 3.2.5 and 3.3 before 3.3.5; Groupware 1.1 before 1.1.6 and 1.2 before 1.2.4; and Groupware Webmail Edition 1.1 before 1.1.6 and 1.2 before 1.2.4; allow remote attackers to inject arbitrary web script or HT...

4.3CVSS6AI score0.02267EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.4 views

SUSE CVE-2020-25275

Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a crafted email message with certain choices for ten thousand MIME parts...

7.5CVSS6.8AI score0.0466EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.6 views

SUSE CVE-2020-25863

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts...

4.3CVSS7.6AI score0.04918EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.43 views

AlmaLinux 8 : dovecot (ALSA-2021:1887)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:1887 advisory. - An issue was discovered in Dovecot before 2.3.13. By using IMAP IDLE, an authenticated attacker can trigger unhibernation via attacker-controlled...

7.5CVSS7.6AI score0.0466EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.28 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : dovecot Multiple Vulnerabilities (NS-SA-2021-0166)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has dovecot packages installed that are affected by multiple vulnerabilities: - In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service resource...

7.5CVSS6.7AI score0.06187EPSS
Exploits4References7
OSV
OSV
added 2021/10/22 5:9 p.m.6 views

CLSA-2021-1634922570 Fixed CVEs in dovecot: CVE-2020-25275, CVE-2020-12100

CVE-2020-12100: Resource exhaustion via deeply nested MIME parts - CVE-2020-25275: Denial of service via mail MIME parsing...

7.5CVSS6.8AI score0.05215EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2021/05/18 2:57 p.m.3 views

dovecot: Denial of service via mail MIME parsing

Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a crafted email message with certain choices for ten thousand MIME parts...

7.5CVSS7.4AI score0.0466EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.25 views

openSUSE: Security Advisory for dovecot23 (openSUSE-SU-2021:0072-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.05215EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.21 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : dovecot Multiple Vulnerabilities (NS-SA-2021-0041)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has dovecot packages installed that are affected by multiple vulnerabilities: - In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service resource...

7.5CVSS6.7AI score0.06187EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.33 views

NewStart CGSL MAIN 6.02 : dovecot Multiple Vulnerabilities (NS-SA-2021-0054)

The remote NewStart CGSL host, running version MAIN 6.02, has dovecot packages installed that are affected by multiple vulnerabilities: - In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service resource consumption via a...

7.5CVSS6.7AI score0.06187EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.33 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : dovecot Multiple Vulnerabilities (NS-SA-2021-0012)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has dovecot packages installed that are affected by multiple vulnerabilities: - In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service resource...

7.5CVSS6.7AI score0.06187EPSS
Exploits4References4
Rows per page
Query Builder