EUVD-2024-0215

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-34083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted comman...

aiosmptd 安全漏洞

aiosmtpd is an asyncio-based SMTP server. A security vulnerability exists in aiosmptd versions prior to 1.4.6, which stems from the presence of STARTTLS unencrypted command injection...

azure-smtp-relay (>=1.0.0 <=1.0.6), mailrise (>=1.3.0 <=1.4.0) +4 more potentially affected by CVE-2024-27305 via aiosmtpd (>=1.2.0 <=1.4.4.post2)

aiosmtpd PYPI version =1.2.0, =1.0.0, =1.3.0, =0.0.1, =0.2.5, =0.3.3 - yades-smtp =0.1.0 Source cves: CVE-2024-27305 Source advisory: OSV:GHSA-PR2M-PX7J-XG65...

PYSEC-2024-221

aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd is vulnerable to inbound SMTP smuggling. SMTP smuggling is a novel vulnerability based on not so novel interpretation differences of the SMTP protocol. By exploiting SMTP smuggling, an attacker may send...

PT-2024-21808 · Aiosmtpd +1 · Aiosmtpd +1

Name of the Vulnerable Software and Affected Versions: aiosmtpd versions prior to 1.4.5 Description: aiosmtpd is vulnerable to inbound SMTP smuggling, a novel vulnerability based on interpretation differences of the SMTP protocol. By exploiting this issue, an attacker may send spoofed e-mails wit...