Lucene search
K

6 matches found

RedHat Linux
RedHat Linux
added 2026/02/16 10:49 a.m.5 views

pybind: Improper use of Pybind

A flaw was found in Ceph. An attacker can allow Ceph to accept any certificate because no certificate context is passed via Pybind to the constructors imaplib.IMAP4SSL or smtplib.SMTPSSL. As a result, pybind pybind does not check the server's X.509 certificate, instead accepting any certificate...

5.8AI score0.00029EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/01/01 12:0 a.m.3 views

PT-2024-41772

Name of the Vulnerable Software and Affected Versions Ceph affected versions not specified Description An issue exists in Ceph related to incorrect certificate checking when using Pybind. This flaw could allow an attacker to perform a Man In the Middle MITM attack, potentially compromising mail...

5.9AI score0.00029EPSS
Exploits0References8
Cvelist
Cvelist
added 2019/07/01 3:5 p.m.19 views

CVE-2019-4296

IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. IBM X-Force ID: 160759...

4CVSS3.3AI score0.00298EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2014/03/20 12:0 a.m.26 views

mail/trojita -- may leak mail contents (not user credentials) over unencrypted connection

Jan Kundrát reports: An SSL stripping vulnerability was discovered in Trojitá, a fast Qt IMAP e-mail client. User's credentials are never leaked, but if a user tries to send an e-mail, the automatic saving into the "sent" or "draft" folders could happen over a plaintext connection even if the...

4.3CVSS6.3AI score0.00981EPSS
Exploits1References1
CVE
CVE
added 2006/08/05 1:0 a.m.48 views

CVE-2006-4001

CVE-2006-4001 concerns Barracuda Spam Firewall (BSF): affected firmware versions 3.3.01.001–3.3.03.053 contain a hard-coded password for the guest account, enabling remote attackers to read sensitive data such as e-mail logs and potentially e-mail contents and the admin password. Related connecte...

7.5CVSS6.5AI score0.01817EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2006/08/05 1:0 a.m.21 views

CVE-2006-4001

Login.pm in Barracuda Spam Firewall BSF 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password...

6.5AI score0.01817EPSS
Exploits1References6
Rows per page
Query Builder