Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.8 views

RHEL 7 : dovecot (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dovecot: IMAP hibernation function allows mail access CVE-2020-24386 - dovecot: Privilege escalation when...

7.4AI score0.0466EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2021:0027-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.05215EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.33 views

RHEL 8 : dovecot (RHSA-2021:1887)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1887 advisory. Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3...

7.5CVSS7.7AI score0.0466EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:0018-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.4AI score0.02751EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.21 views

openSUSE: Security Advisory for dovecot23 (openSUSE-SU-2021:0026-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.05215EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.25 views

openSUSE: Security Advisory for dovecot23 (openSUSE-SU-2021:0072-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.05215EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/01/25 12:0 a.m.39 views

openSUSE Security Update : dovecot23 (openSUSE-2021-72)

This update for dovecot23 fixes the following issues : Security issues fixed : - CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. - CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405. -...

7.5CVSS7.1AI score0.05215EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2021/01/25 12:0 a.m.36 views

openSUSE Security Update : dovecot23 (openSUSE-2021-26)

This update for dovecot23 fixes the following issues : Security issues fixed : - CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. - CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405. -...

7.5CVSS7.1AI score0.05215EPSS
Exploits2References6
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/16 12:0 a.m.39 views

Security update for dovecot23 (important)

openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2021:0072-1 Rating: important References: 1174920 1180405 1180406 Cross-References: CVE-2020-12100 CVE-2020-24386 CVE-2020-25275 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is...

7.5CVSS7.4AI score0.05215EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2021/01/11 12:0 a.m.34 views

GLSA-202101-01 : Dovecot: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202101-01 Dovecot: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Dovecot. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could send a specially crafted mail o...

7.5CVSS7.6AI score0.0466EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/01/11 12:0 a.m.28 views

FreeBSD : mail/dovecot -- multiple vulnerabilities (bd98066d-4ea4-11eb-b412-e86a64caca56)

Aki Tuomi reports : When imap hibernation is active, an attacker can cause Dovecot to discover file system directory structure and access other users' emails using specially crafted command. The attacker must have valid credentials to access the mail server. Mail delivery / parsing crashed when t...

7.5CVSS7.2AI score0.0466EPSS
Exploits1References4
Mageia
Mageia
added 2021/01/08 1:59 p.m.74 views

Updated dovecot packages fix security vulnerabilities

It was discovered that Dovecot incorrectly handled certain imap hibernation commands. A remote authenticated attacker could possibly use this issue to access other users’ email CVE-2020-24386. Innokentii Sennovskiy discovered that Dovecot incorrectly handled MIME parsing. A remote attacker could...

7.5CVSS2.7AI score0.0466EPSS
Exploits1References5
OSV
OSV
added 2021/01/07 3:52 p.m.7 views

OPENSUSE-SU-2021:0026-1 Security update for dovecot23

This update for dovecot23 fixes the following issues: Security issues fixed: - CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. - CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405. -...

7.5CVSS7.1AI score0.05215EPSS
Exploits2References7
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/07 12:0 a.m.40 views

Security update for dovecot23 (important)

openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2021:0026-1 Rating: important References: 1174920 1180405 1180406 Cross-References: CVE-2020-12100 CVE-2020-24386 CVE-2020-25275 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is...

7.5CVSS7.4AI score0.05215EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2021/01/06 12:0 a.m.38 views

SUSE SLES15 Security Update : dovecot23 (SUSE-SU-2021:0029-1)

This update for dovecot23 fixes the following issues : Security issues fixed : CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405. CVE-2020-2527...

7.5CVSS7.2AI score0.05215EPSS
Exploits2References10
OSV
OSV
added 2021/01/05 2:58 p.m.11 views

SUSE-SU-2021:0029-1 Security update for dovecot23

This update for dovecot23 fixes the following issues: Security issues fixed: - CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. - CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405. -...

7.5CVSS7AI score0.05215EPSS
Exploits2References7
OSV
OSV
added 2021/01/04 2:35 p.m.1 views

SUSE-SU-2021:0018-1 Security update for dovecot22

This update for dovecot22 fixes the following issues: - CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405...

6.8CVSS6.8AI score0.02751EPSS
Exploits0References3
OSV
OSV
added 2021/01/04 2:4 p.m.6 views

USN-4674-1 dovecot vulnerabilities

It was discovered that Dovecot incorrectly handled certain imap hibernation commands. A remote authenticated attacker could possibly use this issue to access other users' email. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 20.10. CVE-2020-24386 Innokentii Sennovskiy...

7.5CVSS7.2AI score0.0466EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/01/04 12:0 a.m.32 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Dovecot vulnerabilities (USN-4674-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4674-1 advisory. It was discovered that Dovecot incorrectly handled certain imap hibernation commands. A remote authenticated attacker could...

7.5CVSS7.6AI score0.0466EPSS
Exploits1References3
ArchLinux
ArchLinux
added 2021/01/04 12:0 a.m.138 views

[ASA-202101-4] dovecot: multiple issues

Arch Linux Security Advisory ASA-202101-4 ========================================= Severity: High Date : 2021-01-04 CVE-ID : CVE-2020-24386 CVE-2020-25275 Package : dovecot Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1398 Summary ======= The package dovecot befo...

7.5CVSS1.6AI score0.0466EPSS
Exploits1References9
Rows per page
Query Builder