CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux - уязвимость в evolution-data-server

In GNOME evolution-data-server before 3.35.91, a malicious server can crash the mail client with a NULL pointer dereference by sending an invalid e.g., minimal CAPABILITY line on a connection attempt. This is related to imapxfreecapability and imapxconnecttoserver...

5.9CVSS6.9AI score0.01593EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-1725

Malware in sbrugna...

9.8CVSS9.3AI score0.01022EPSS

Exploits1References8

SUSE CVE•added 2023/02/15 3:55 a.m.•1 views

SUSE CVE-2020-16117

5.3CVSS6.9AI score0.01593EPSS

Exploits1References7

Prion•added 2020/07/29 6:15 p.m.•25 views

Null pointer dereference

4.3CVSS5.5AI score0.01593EPSS

Exploits1References4Affected Software2

Prion•added 2018/07/20 4:29 a.m.•24 views

Code injection

camel/providers/imapx/camel-imapx-server.c in the IMAPx component in GNOME evolution-data-server before 3.21.2 proceeds with cleartext data containing a password if the client wishes to use STARTTLS but the server will not use STARTTLS, which makes it easier for remote attackers to obtain sensiti...

5CVSS6.8AI score0.01022EPSS

Exploits1References5Affected Software2

OSV•added 2018/07/20 4:29 a.m.•25 views

CVE-2016-10727

9.8CVSS6.6AI score

Exploits0References5

NVD•added 2018/07/20 4:29 a.m.•14 views

CVE-2016-10727

9.8CVSS9.3AI score0.01022EPSS

Exploits1References5

CVE•added 2018/07/20 4:0 a.m.•82 views

CVE-2016-10727

Evolution Data Server’s IMAPx component (camel-imapx-server.c) before version 3.21.2 allows plaintext transmission when a client requests STARTTLS but the server does not use STARTTLS, enabling password sniffing over the network. Root cause: incorrect handling that should have error-terminated th...

9.8CVSS9.1AI score0.01022EPSS

Exploits1References5Affected Software1