Lucene search
K

208 matches found

Tenable Nessus
Tenable Nessus
added 2020/10/30 12:0 a.m.45 views

EulerOS 2.0 SP5 : mutt (EulerOS-SA-2020-2258)

According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.CVE-2020-14093 - Mutt before 1.14.4 and NeoMutt befo...

5.9CVSS6.3AI score0.02288EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.32 views

EulerOS 2.0 SP3 : mutt (EulerOS-SA-2020-2109)

According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.CVE-2020-14093 - Mutt before 1.14.4 and NeoMutt befo...

5.9CVSS6.3AI score0.02288EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/08/10 12:0 a.m.38 views

SUSE SLES12 Security Update : LibVNCServer (SUSE-SU-2020:2167-1)

This update for LibVNCServer fixes the following issues : security update fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock fix CVE-2019-20840 bsc1173876, unaligned accesses in...

9.8CVSS6.9AI score0.03589EPSS
Exploits0References35
OSV
OSV
added 2020/08/07 12:54 p.m.7 views

SUSE-SU-2020:2167-1 Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: - security update fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock fix CVE-2019-20840 bsc1173876, unaligned accesses in...

9.8CVSS6.8AI score0.03589EPSS
Exploits0References23
Veracode
Veracode
added 2020/08/06 9:35 p.m.21 views

Insecure Connection

Alpine silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the connection and letting the user decide what they would like to do...

7.5CVSS2.6AI score0.01823EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2020/07/29 6:15 p.m.3 views

DEBIAN-CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.3AI score0.0205EPSS
Exploits1References1
NVD
NVD
added 2020/07/29 6:15 p.m.8 views

CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.4AI score0.0205EPSS
Exploits1References4
OSV
OSV
added 2020/07/29 6:15 p.m.3 views

UBUNTU-CVE-2020-16118

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c...

7.5CVSS7.1AI score0.0205EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2020/07/29 12:0 a.m.5 views

PT-2020-14758 · Gnome +1 · Gnome Balsa +1

Name of the Vulnerable Software and Affected Versions: GNOME Balsa versions prior to 2.6.0 Description: A malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imap mbox connect in libbalsa/imap/imap-handle.c. This...

7.5CVSS7.3AI score0.0205EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.35 views

openSUSE Security Update : LibVNCServer (openSUSE-2020-1056)

This update for LibVNCServer fixes the following issues : - security update - added patches fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock...

9.8CVSS7.1AI score0.03589EPSS
Exploits0References20
OSV
OSV
added 2020/07/24 12:20 p.m.9 views

OPENSUSE-SU-2020:1056-1 Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock ...

9.8CVSS6.8AI score0.03589EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.30 views

openSUSE Security Update : mutt (openSUSE-2020-915)

This update for mutt fixes the following issues : - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 bsc1173197. - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response bsc1172906, bsc1172935. -...

5.9CVSS6.1AI score0.02288EPSS
Exploits0References6
OSV
OSV
added 2020/07/18 12:27 p.m.6 views

OPENSUSE-SU-2020:0988-1 Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock ...

9.8CVSS6.8AI score0.03589EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2020/07/16 12:0 a.m.40 views

SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2020:1922-1)

This update for LibVNCServer fixes the following issues : security update added patches fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock +...

9.8CVSS7.1AI score0.03589EPSS
Exploits0References31
OSV
OSV
added 2020/07/15 9:31 a.m.9 views

SUSE-SU-2020:1922-1 Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock ...

9.8CVSS6.8AI score0.03589EPSS
Exploits0References21
OSV
OSV
added 2020/07/09 3:15 p.m.1 views

DEBIAN-CVE-2020-12398

If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection. This vulnerability affects Thunderbird 68.9.0...

7.5CVSS7.6AI score0.00976EPSS
Exploits0References1
OSV
OSV
added 2020/07/09 3:15 p.m.6 views

CVE-2020-12398

If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection. This vulnerability affects Thunderbird 68.9.0...

7.5CVSS8.2AI score
Exploits0References3
CVE
CVE
added 2020/07/09 2:45 p.m.252 views

CVE-2020-12398

CVE-2020-12398 affects Mozilla Thunderbird when STARTTLS is used for IMAP and the server sends PREAUTH, causing Thunderbird to proceed with an unencrypted connection and expose email data. Impact is described as information leakage due to unencrypted transmission; affected versions are Thunderbir...

7.5CVSS7.4AI score0.00976EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/07/09 12:0 a.m.22 views

SUSE SLED15 / SLES15 Security Update : mutt (SUSE-SU-2020:1771-1)

This update for mutt fixes the following issues : CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 bsc1173197. CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response bsc1172906, bsc1172935...

5.9CVSS6.2AI score0.02288EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2020/06/30 12:0 a.m.28 views

openSUSE: Security Advisory for mutt (openSUSE-SU-2020:0915-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS6.1AI score0.02288EPSS
Exploits0References2
Rows per page
Query Builder