Lucene search
K

262 matches found

OSV
OSV
added 2023/09/01 8:51 p.m.15 views

GHSA-H24C-6P6P-M3VX tss-lib leaks secret keys in response to incorrectly constructed Paillier moduli

Impact The specification of the GG18 threshold ECDSA signature protocol contains a vulnerability allowing an attacker to recover the shared secret key. If a participant generates a Paillier modulus N containing small factors less than 2^100 they can interact with other participants in the signing...

7AI score
Exploits0References5
OSV
OSV
added 2023/06/29 8:26 p.m.6 views

CLSA-2023-1688070370 Fix CVE(s): CVE-2021-38371

SECURITY UPDATE: Response injection buffering during MTA SMTP sending - debian/patches/CVE-2021-38371.patch: Enforce STARTTLS sync point, client side in src/transports/smtp.c - CVE-2021-38371...

7.5CVSS7.2AI score0.01996EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.19 views

Debian: Security Advisory (DLA-186-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS8.7AI score0.07964EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2023/02/21 6:30 p.m.23 views

GoPistolet vulnerable to Improper Resource Shutdown or Release

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor...

7.5CVSS7.4AI score0.0094EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2023/02/21 6:15 p.m.15 views

CVE-2015-10085

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor...

7.5CVSS5.1AI score0.0094EPSS
Exploits0References4
Prion
Prion
added 2023/02/21 6:15 p.m.15 views

Design/Logic Flaw

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor...

5CVSS7.2AI score0.0094EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2023/02/21 5:31 p.m.37 views

CVE-2015-10085

CVE-2015-10085 affects GoPistolet’s MTA component with a Denial of Service (DoS) condition caused by handling of unknown code in the MTA. The available records consistently state that no version details are provided, and a patch is identified as b91aa4674d460993765884e8463c70e6d886bc90. Remediati...

7.5CVSS5.6AI score0.0094EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/02/21 5:31 p.m.23 views

CVE-2015-10085 GoPistolet MTA denial of service

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor...

3.5CVSS7.5AI score0.0094EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/02/21 5:31 p.m.6 views

CVE-2015-10085 GoPistolet MTA denial of service

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor...

3.5CVSS6.9AI score0.0094EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/09/09 12:0 a.m.20 views

Fedora: Security Advisory for exim (FEDORA-2022-1ca1d22165)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.02602EPSS
Exploits2References2
CNVD
CNVD
added 2022/08/09 12:0 a.m.159 views

Unspecified Vulnerability in Exim (CNVD-2022-56952)

Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. A security vulnerability exists in Exim versions prior to 4.95, which stems from a heap-based buffer overflow in the alias list in hostnamelookup when senderhostname is set. No details of t...

9.8CVSS9.5AI score0.02935EPSS
Exploits1References1
Redos
Redos
added 2022/02/01 12:0 a.m.57 views

ROS-20220125-08

The Sendmail mail transfer agent vulnerability is related to a logical error in the TLS implementation when working with different protocols but using compatible certificates such as multi-domain or wildcard certificates. wildcard certificates. Exploitation of the vulnerability could allow an...

7.4CVSS7.4AI score0.02037EPSS
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2022/01/10 12:0 a.m.24 views

Exim Mail Transfer Agent (MTA) Improper Input Validation

Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

10CVSS4.1AI score0.99961EPSS
In wildExploits27
The Hacker News
The Hacker News
added 2021/08/30 11:54 a.m.25 views

How Does MTA-STS Improve Your Email Security?

Simple Mail Transfer Protocol or SMTP has easily exploitable security loopholes. Email routing protocols were designed in a time when cryptographic technology was at a nascent stage e.g., the de-facto protocol for email transfer, SMTP, is nearly 40 years old now, and therefore security was not an...

Exploits0
OpenVAS
OpenVAS
added 2021/08/11 12:0 a.m.18 views

Exim <= 4.96 STARTTLS Vulnerability

Exim is prone to a vulnerability in STARTTLS. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:exim:exim"; if description...

7.5CVSS7.5AI score0.01996EPSS
Exploits0References1
NVD
NVD
added 2021/08/10 3:15 p.m.18 views

CVE-2021-38371

The STARTTLS feature in Exim through 4.94.2 allows response injection buffering during MTA SMTP sending...

7.5CVSS0.01996EPSS
Exploits0References4
OSV
OSV
added 2021/08/10 3:15 p.m.24 views

CVE-2021-38371

The STARTTLS feature in Exim through 4.94.2 allows response injection buffering during MTA SMTP sending...

7.5CVSS7AI score0.01996EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/08/10 3:15 p.m.25 views

CVE-2021-38371

The STARTTLS feature in Exim through 4.94.2 allows response injection buffering during MTA SMTP sending...

7.5CVSS7.7AI score0.01996EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/08/10 3:15 p.m.45 views

CVE-2021-38371

The STARTTLS feature in Exim through 4.94.2 allows response injection buffering during MTA SMTP sending...

7.5CVSS7.1AI score0.01996EPSS
Exploits0References4
Prion
Prion
added 2021/08/10 3:15 p.m.42 views

Design/Logic Flaw

The STARTTLS feature in Exim through 4.94.2 allows response injection buffering during MTA SMTP sending...

5CVSS7.6AI score0.01996EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder