Lucene search
+L

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-33582

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service multiple-minute daemon hang via input that is mishandled during hash-table...

7.5CVSS7.1AI score0.0307EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.20 views

CentOS 9 : cyrus-imapd-3.4.1-6.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the cyrus- imapd-3.4.1-6.el9 build changelog. - Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service multiple-minute daemon hang via input that is mishandled during...

7.5CVSS7.2AI score0.0307EPSS
Exploits0References2
OSV
OSV
added 2022/07/05 7:11 p.m.9 views

MGASA-2022-0247 Updated cyrus-imapd packages fix security vulnerability

Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service multiple-minute daemon hang via input that is mishandled during hash-table interaction. Because there are many insertions into a single bucket, strcmp becomes slow. CVE-2021-33582...

7.5CVSS7.4AI score0.0307EPSS
Exploits0References4
CloudLinux
CloudLinux
added 2022/06/01 6:13 p.m.28 views

Fixed CVE-2021-33582 in cyrus-imapd

CVE-2021-33582: Fix a bad string hashing algorithm which could lead to collisions and cause a CPU denial of service...

7.5CVSS1.7AI score0.0307EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.32 views

Rocky Linux 8 : cyrus-imapd (RLSA-2021:3492)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:3492 advisory. - Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service multiple-minute daemon hang via input that is mishandled during hash-table...

7.5CVSS7.2AI score0.0307EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.26 views

Amazon Linux AMI : cyrus-imapd (ALAS-2022-1559)

The version of cyrus-imapd installed on the remote host is prior to 2.4.22-1.10. It is, therefore, affected by a vulnerability as referenced in the ALAS-2022-1559 advisory. A flaw was found in cyrus-imapd. A bad string hashing algorithm used in internal hash tables allows user inputs to be stored...

7.5CVSS7AI score0.0307EPSS
Exploits0References3
Amazon
Amazon
added 2021/12/10 12:0 a.m.36 views

Important: cyrus-imapd

Issue Overview: A flaw was found in cyrus-imapd. A bad string hashing algorithm used in internal hash tables allows user inputs to be stored in predictable buckets. A user may cause a CPU denial of service by maliciously directing many inputs to a single bucket. The highest threat from this...

7.5CVSS7.4AI score0.0307EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/12/10 12:0 a.m.32 views

Amazon Linux 2 : cyrus-imapd (ALAS-2021-1725)

The version of cyrus-imapd installed on the remote host is prior to 2.4.22-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1725 advisory. A flaw was found in cyrus-imapd. A bad string hashing algorithm used in internal hash tables allows user inputs to be stored i...

7.5CVSS7AI score0.0307EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/09/15 12:0 a.m.25 views

RHEL 8 : cyrus-imapd (RHSA-2021:3546)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3546 advisory. The Cyrus IMAP server provides access to personal mail, system-wide bulletin boards, news-feeds, calendar and contacts through the IMAP, JMAP, NNTP,...

7.5CVSS7.3AI score0.0307EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/09/15 12:0 a.m.30 views

CentOS 8 : cyrus-imapd (CESA-2021:3492)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:3492 advisory. - cyrus-imapd: Denial of service via string hashing algorithm collisions CVE-2021-33582 Note that Nessus has not tested for this issue but has instead relied on...

7.5CVSS7.3AI score0.0307EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/09/13 7:57 a.m.36 views

Important: Red Hat Security Advisory: cyrus-imapd security update

An update for cyrus-imapd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.5CVSS7.1AI score0.0307EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/09/13 7:42 a.m.27 views

Important: Red Hat Security Advisory: cyrus-imapd security update

An update for cyrus-imapd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

7.5CVSS7.1AI score0.0307EPSS
Exploits0References2
OSV
OSV
added 2021/09/13 6:47 a.m.32 views

RLSA-2021:3492 Important: cyrus-imapd security update

The Cyrus IMAP server provides access to personal mail, system-wide bulletin boards, news-feeds, calendar and contacts through the IMAP, JMAP, NNTP, CalDAV and CardDAV protocols. Security Fixes: cyrus-imapd: Denial of service via string hashing algorithm collisions CVE-2021-33582 For more details...

7.5CVSS7.5AI score0.0307EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2021/09/13 12:0 a.m.30 views

cyrus-imapd security update

3.0.7-20.1 - Fix for CVE-2021-33582...

7.5CVSS1.4AI score0.0307EPSS
Exploits0
ALT Linux
ALT Linux
added 2021/09/13 12:0 a.m.24 views

Security fix for the ALT Linux 8 package cyrus-imapd version 2.5.17-alt0.M80P.2

2.5.17-alt0.M80P.2 built Sept. 13, 2021 Sergey Y. Afonin in task 284610 Sept. 5, 2021 Sergey Y. Afonin - updated to latest cyrus-imapd-2.5 branch 6c804c1337cb; fixes: CVE-2021-33582...

5CVSS7.7AI score0.0307EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/09/13 12:0 a.m.23 views

Oracle Linux 8 : cyrus-imapd (ELSA-2021-3492)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-3492 advisory. 3.0.7-20.1 - Fix for CVE-2021-33582 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...

7.5CVSS7.3AI score0.0307EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/09/13 12:0 a.m.25 views

RHEL 8 : cyrus-imapd (RHSA-2021:3492)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3492 advisory. The Cyrus IMAP server provides access to personal mail, system-wide bulletin boards, news-feeds, calendar and contacts through the IMAP, JMAP, NNTP,...

7.5CVSS7.3AI score0.0307EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/09/13 12:0 a.m.16 views

RHEL 8 : cyrus-imapd (RHSA-2021:3493)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3493 advisory. The Cyrus IMAP server provides access to personal mail, system-wide bulletin boards, news-feeds, calendar and contacts through the IMAP, JMAP, NNTP,...

7.5CVSS7.3AI score0.0307EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2021/09/09 12:0 a.m.77 views

Security fix for the ALT Linux 9 package cyrus-imapd version 3.2.8-alt1

3.2.8-alt1 built Sept. 9, 2021 Sergey Y. Afonin in task 284606 Sept. 5, 2021 Sergey Y. Afonin - 3.2.8 fixes: CVE-2021-33582...

5CVSS7.7AI score0.0307EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/09/07 12:0 a.m.21 views

FreeBSD : cyrus-imapd -- multiple-minute daemon hang via input that is mishandled during hash-table interaction (3d915d96-0b1f-11ec-8d9f-080027415d17)

Cyrus IMAP 3.4.2 Release Notes states : Fixed CVE-2021-33582: Certain user inputs are used as hash table keys during processing. A poorly chosen string hashing algorithm meant that the user could control which bucket their data was stored in, allowing a malicious user to direct many inputs to a...

7.5CVSS7AI score0.0307EPSS
Exploits0References2
Rows per page
Query Builder