Lucene search
K

9 matches found

OSV
OSV
added 2026/05/07 4:57 p.m.8 views

CLSA-2026-1778173027 dovecot: Fix of CVE-2026-27858

CVE-2026-27858: fix unbounded memory allocation in managesieve-login when AUTHENTICATE initial response literal size is excessively large...

7.5CVSS5.8AI score0.0079EPSS
Exploits0References1
OSV
OSV
added 2026/05/07 4:42 p.m.7 views

CLSA-2026-1778172123 dovecot: Fix of CVE-2026-27858

CVE-2026-27858: fix unbounded memory allocation in managesieve-login when AUTHENTICATE initial response literal size is excessively large...

7.5CVSS5.8AI score0.0079EPSS
Exploits0References1
OSV
OSV
added 2026/04/16 1:10 p.m.7 views

OPENSUSE-SU-2026:20554-1 Security update for dovecot24

This update for dovecot24 fixes the following issues: - Update to v2.4.3 - CVE-2025-59028: Invalid base64 authentication can cause DoS for other logins bsc1260894. - CVE-2025-59031: decode2text.sh OOXML extraction may follow symlinks and read unintended files during indexing bsc1260895. -...

8.2CVSS5.8AI score0.0079EPSS
Exploits6References20
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-27858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force...

7.5CVSS5.4AI score0.0079EPSS
Exploits0References3
NVD
NVD
added 2026/03/27 9:16 a.m.7 views

CVE-2026-27858

Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force managesieve-login to be unavailable by repeatedly crashing the process. Protect access to managesieve protocol, or install fixed version. No public...

7.5CVSS0.0079EPSS
Exploits0References18
Debian CVE
Debian CVE
added 2026/03/27 8:10 a.m.4 views

CVE-2026-27858

Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force managesieve-login to be unavailable by repeatedly crashing the process. Protect access to managesieve protocol, or install fixed version. No public...

7.5CVSS5.2AI score0.0079EPSS
Exploits0
Cvelist
Cvelist
added 2026/03/27 8:10 a.m.25 views

CVE-2026-27858

Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force managesieve-login to be unavailable by repeatedly crashing the process. Protect access to managesieve protocol, or install fixed version. No public...

7.5CVSS0.0079EPSS
Exploits0References1
CVE
CVE
added 2026/03/27 8:10 a.m.25 views

CVE-2026-27858

CVE-2026-27858 affects the managesieve component. An attacker can send a specially crafted message before authentication that causes managesieve to allocate a large amount of memory, and can force the managesieve-login process to become unavailable by repeated crashes. The practical impact is pot...

7.5CVSS5.9AI score0.0079EPSS
Exploits0References18Affected Software2
UbuntuCve
UbuntuCve
added 2026/03/27 12:0 a.m.4 views

CVE-2026-27858

Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force managesieve-login to be unavailable by repeatedly crashing the process. Protect access to managesieve protocol, or install fixed version. No public...

7.5CVSS5.8AI score0.0079EPSS
Exploits0References2
Rows per page
Query Builder