Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2019-3814

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a valid...

7.7CVSS6.6AI score0.02462EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.20 views

RHEL 6 : dovecot (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dovecot: Buffer overflow in indexer-worker process results in privilege escalation CVE-2019-7524 - A...

3.3CVSS5.8AI score0.02462EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.43 views

Oracle Linux 8 : dovecot (ELSA-2019-3467)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-3467 advisory. - fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes...

9.8CVSS7AI score0.62579EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-3881-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS6.8AI score0.02462EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2019-0072)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS6.2AI score0.02462EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2019:0414-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS6.9AI score0.02462EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.26 views

CentOS 8 : dovecot (CESA-2019:3467)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3467 advisory. - dovecot: Improper certificate validation CVE-2019-3814 Note that Nessus has not tested for this issue but has instead relied only on the application's...

7.7CVSS6.5AI score0.02462EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/12/10 12:0 a.m.27 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : dovecot Multiple Vulnerabilities (NS-SA-2020-0105)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has dovecot packages installed that are affected by multiple vulnerabilities: - In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used ...

8.8CVSS7AI score0.02462EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.37 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : dovecot Multiple Vulnerabilities (NS-SA-2020-0071)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has dovecot packages installed that are affected by multiple vulnerabilities: - In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used ...

8.8CVSS7AI score0.02462EPSS
Exploits1References3
Amazon
Amazon
added 2020/08/24 12:0 a.m.32 views

Medium: dovecot

Issue Overview: In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root. This occurs because of missing checks in the fts and pop3-uidl components. CVE-2019-7524 It was discovered that...

8.8CVSS7.8AI score0.02462EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.31 views

Amazon Linux AMI : dovecot (ALAS-2020-1363)

The version of dovecot installed on the remote host is prior to 2.2.36-6.19. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1363 advisory. In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker...

8.8CVSS7.1AI score0.02462EPSS
Exploits1References5
Amazon
Amazon
added 2020/05/13 12:0 a.m.82 views

Medium: dovecot

Issue Overview: In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root. This occurs because of missing checks in the fts and pop3-uidl components. CVE-2019-7524 It was discovered that...

8.8CVSS7.8AI score0.02462EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.24 views

Scientific Linux Security Update : dovecot on SL7.x x86_64 (20200407)

dovecot: Improper certificate validation dovecot: Buffer overflow in indexer-worker process results in privilege escalation C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135805; scriptversion"1.3";...

8.8CVSS6.5AI score0.02462EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.43 views

CentOS 7 : dovecot (RHSA-2020:1062)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1062 advisory. - It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a val...

8.8CVSS7.1AI score0.02462EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2020/04/06 12:0 a.m.48 views

dovecot security and bug fix update

1:2.2.36-6 - fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes 1741787 1:2.2.36-5 - fix CVE-2019-3814: improper certificate validation 1674369 - fix CVE-2019-7524: buffer overflow in...

9.8CVSS2.4AI score0.62579EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2020/03/31 9:10 p.m.43 views

Moderate: Red Hat Security Advisory: dovecot security and bug fix update

An update for dovecot is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.8AI score0.02462EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for dovecot (EulerOS-SA-2019-1569)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.02462EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/11/06 12:0 a.m.27 views

RHEL 8 : dovecot (RHSA-2019:3467)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3467 advisory. Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and...

7.7CVSS6.7AI score0.02462EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2019/11/05 9:29 p.m.70 views

Moderate: Red Hat Security Advisory: dovecot security and bug fix update

An update for dovecot is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.7CVSS6.7AI score0.02462EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.36 views

Fedora 30 : 1:dovecot (2019-9e004decea)

dovecot updated to 2.3.6, includes several security fixes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

8.8CVSS6.5AI score0.02525EPSS
Exploits1References5
Rows per page
Query Builder