Lucene search
+L

315 matches found

ptsecurity
ptsecurity
added 2026/07/09 12:0 a.m.7 views

PT-2026-56897

Name of the Vulnerable Software and Affected Versions Hoppscotch versions prior to 2026.6.0 Description The updateInfraConfigs GraphQL mutation in admin/infra.resolver.ts accepts an attacker-controlled MAILER SMTP URL value. Additionally, the validateSMTPUrl function in utils.ts permits path,...

7.2CVSS6.3AI score0.00518EPSS
Exploits0References9
redhatcve
redhatcve
added 2026/07/08 7:0 a.m.6 views

CVE-2026-46584

A flaw was found in the Apache Camel Mail Component. This vulnerability, due to improper input validation, allows a remote attacker to exploit routes that channel untrusted input into the mail producer without proper header stripping. Before version 4.19.0, this could lead to the redirection of...

7.5CVSS5.9AI score0.00378EPSS
Exploits1References4
attackerkb
attackerkb
added 2026/07/06 8:12 a.m.8 views

CVE-2026-1433

uniFLOW Universal Login Manager ULM Standalone contains an information disclosure vulnerability that may allow an authenticated administrator to access sensitive configuration information through the ULM Remote User Interface RUI. Exploitation requires administrative privileges and may disclose...

4.8CVSS5.9AI score0.00217EPSS
Exploits0References3
euvd
euvd
added 2026/06/26 2:53 p.m.7 views

EUVD-2026-39662

Unauthenticated Cross Site Request Forgery CSRF in Gmail SMTP = 1.2.3.19 versions...

4.3CVSS5.8AI score0.00098EPSS
Exploits0References1
osv
osv
added 2026/06/19 6:4 a.m.13 views

RLSA-2026:25930 Important: postfix security update

The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffer over-read via malformed enhanced status code CVE-2026-43964 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS6.1AI score0.00415EPSS
Exploits0References2
osv
osv
added 2026/06/17 12:3 p.m.10 views

RLSA-2026:26205 Important: postfix security update

The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffer over-read via malformed enhanced status code CVE-2026-43964 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS5.5AI score0.00415EPSS
Exploits0References2
osv
osv
added 2026/06/17 6:0 a.m.7 views

RLSA-2026:25932 Important: postfix security update

The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffer over-read via malformed enhanced status code CVE-2026-43964 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS5.5AI score0.00415EPSS
Exploits0References2
rocky
rocky
added 2026/06/17 6:0 a.m.22 views

postfix security update

An update is available for postfix. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The postfix packages provide a Mail Transport Agent MTA, which supports...

7.5CVSS5.7AI score0.00415EPSS
Exploits0
nessus
nessus
added 2026/06/16 12:0 a.m.34 views

RHEL 9 : postfix (RHSA-2026:26205)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:26205 advisory. The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffe...

7.5CVSS5.7AI score0.00415EPSS
Exploits0References4
almalinux
almalinux
added 2026/06/15 12:0 a.m.9 views

Important: postfix security update

The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffer over-read via malformed enhanced status code CVE-2026-43964 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS5.5AI score0.00415EPSS
Exploits0References4
osv
osv
added 2026/06/15 12:0 a.m.6 views

ALSA-2026:25932 Important: postfix security update

The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffer over-read via malformed enhanced status code CVE-2026-43964 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS5.5AI score0.00415EPSS
Exploits0References4
nessus
nessus
added 2026/06/15 12:0 a.m.20 views

RHEL 8 : postfix (RHSA-2026:25932)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:25932 advisory. The postfix packages provide a Mail Transport Agent MTA, which supports protocols like LDAP, SMTP AUTH SASL, and TLS. Security Fixes: postfix: buffe...

7.5CVSS5.7AI score0.00415EPSS
Exploits0References4
osv
osv
added 2026/06/10 12:22 p.m.14 views

USN-6455-2 exim4 regression

USN-6455-1 fixed vulnerabilities in Exim. The fix for CVE-2023-42117 introduced a regression on Ubuntu 22.04 LTS that resulted in certain connections logging a Taint mismatch error. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered tha...

9.8CVSS8.2AI score0.05673EPSS
Exploits0References2
fedora
fedora
added 2026/06/10 12:56 a.m.18 views

[SECURITY] Fedora 44 Update: exim-4.99.4-1.fc44

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

5.3CVSS5.4AI score0.00264EPSS
Exploits0
nvd
nvd
added 2026/06/04 9:16 a.m.10 views

CVE-2026-3820

There is a vulnerability in the Supermicro BMC SMTP service at Supermicro AS-2115HS-TNR. An attacker may obtain administrator privileges and inject specially crafted characters into the SMTP service configuration. This may cause the underlying system to execute unintended commands during process...

7.2CVSS0.0037EPSS
Exploits0References1
euvd
euvd
added 2026/06/04 8:7 a.m.12 views

EUVD-2026-34226

There is a vulnerability in the Supermicro BMC SMTP service at Supermicro AS-2115HS-TNR. An attacker may obtain administrator privileges and inject specially crafted characters into the SMTP service configuration. This may cause the underlying system to execute unintended commands during process...

7.2CVSS6.2AI score0.0037EPSS
Exploits0References1
ubuntu
ubuntu
added 2026/06/03 7:11 a.m.18 views

USN-8375-1: nginx vulnerabilities

It was discovered that the nginx ngxmailsmtpmodule module incorrectly handled certain memory operations when doing SMTP authentication. This could possibly result in sensitive information being sent to the authentication server. CVE-2025-53859 It was discovered that nginx incorrectly handled...

9.2CVSS7.7AI score0.61469EPSS
Exploits43
osv
osv
added 2026/06/03 7:11 a.m.12 views

USN-8375-1 nginx vulnerabilities

It was discovered that the nginx ngxmailsmtpmodule module incorrectly handled certain memory operations when doing SMTP authentication. This could possibly result in sensitive information being sent to the authentication server. CVE-2025-53859 It was discovered that nginx incorrectly handled...

9.2CVSS6AI score0.61469EPSS
Exploits43References13
fedora
fedora
added 2026/06/02 1:11 a.m.15 views

[SECURITY] Fedora 43 Update: postfix-3.10.10-1.fc43

Postfix is a Mail Transport Agent MTA...

7.5CVSS5.8AI score0.00415EPSS
Exploits0
cnnvd
cnnvd
added 2026/05/30 12:0 a.m.13 views

Exim 安全漏洞

Exim is an open-source message transfer agent MTA developed by Exim Software, running on Unix systems. It primarily handles the routing, forwarding, and delivery of emails. Versions of Exim from 4.88 to 4.99.4 contained security vulnerabilities. These vulnerabilities stemmed from improper handlin...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References3
Rows per page
Query Builder