Lucene search
+L

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-28200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the reg...

4.3CVSS6.7AI score0.01968EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.28 views

RHEL 7 : dovecot (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dovecot insecure SSL/TLS key and certificate file creation CVE-2016-4983 - The Sieve engine in Dovecot...

4.3CVSS4.5AI score0.01968EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2021-0557)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02837EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2021/09/04 12:0 a.m.29 views

openSUSE 15 Security Update : dovecot23 (openSUSE-SU-2021:1225-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1225-1 advisory. - The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular...

7.5CVSS7AI score0.01968EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/09/01 12:0 a.m.27 views

SUSE SLES15: dovecot23 / dovecot23-backend-mysql / dovecot23-backend-pgsql / etc (SUSE-SU-2021:2891-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2891-1 advisory. Update dovecot to version 2.3.15 jscSLE-19970: Security issues fixed: - CVE-2021-29157: Dovecot does not correctly escape kid and a...

7.5CVSS7.2AI score0.02837EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/09/01 12:0 a.m.25 views

SUSE SLES15: dovecot23 / dovecot23-backend-mysql / dovecot23-backend-pgsql / etc (SUSE-SU-2021:2890-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2890-1 advisory. Update dovecot to version 2.3.15 jscSLE-19970: Security issues fixed: - CVE-2021-29157: Dovecot does not correctly escape kid and a...

7.5CVSS7.2AI score0.02837EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/09/01 12:0 a.m.32 views

SUSE SLES15: dovecot23 / dovecot23-backend-mysql / dovecot23-backend-pgsql / etc (SUSE-SU-2021:2892-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2892-1 advisory. Update dovecot to version 2.3.15 jscSLE-19970: Security issues fixed: - CVE-2021-29157: Dovecot does not correctly escape kid and azp fields in...

7.5CVSS7.2AI score0.02837EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/09/01 12:0 a.m.27 views

openSUSE 15 Security Update : dovecot23 (openSUSE-SU-2021:2892-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2892-1 advisory. - The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular...

7.5CVSS7AI score0.01968EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2021/06/28 12:8 p.m.49 views

CVE-2020-28200

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension...

4.3CVSS5AI score0.01968EPSS
Exploits0
CVE
CVE
added 2021/06/28 12:8 p.m.170 views

CVE-2020-28200

CVE-2020-28200 affects Dovecot’s Sieve engine (regex extension) prior to 2.3.15, enabling Uncontrolled Resource Consumption, i.e., DoS via crafted complex regex scripts. Related advisories indicate upgrade to Dovecot 2.3.15+ (e.g., 2.3.15-1+/upstream fix) and, as a workaround, disabling the regex...

4.3CVSS4.9AI score0.01968EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2021/06/28 12:0 a.m.25 views

Dovecot 1.2.0 - 2.3.14 DoS Vulnerability

Dovecot is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

4.3CVSS5.8AI score0.01968EPSS
Exploits0References2
Rows per page
Query Builder