Lucene search
K

256 matches found

UbuntuCve
UbuntuCve
added 2023/04/04 11:15 p.m.27 views

CVE-2023-29323

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...

7.8CVSS7.1AI score0.00279EPSS
Exploits0References8
Prion
Prion
added 2023/04/04 11:15 p.m.89 views

Code injection

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...

4.3CVSS7.5AI score0.00279EPSS
Exploits0References8Affected Software2
OSV
OSV
added 2023/04/04 11:15 p.m.3 views

UBUNTU-CVE-2023-29323

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...

7.8CVSS5.8AI score0.00279EPSS
Exploits0References9
CNNVD
CNNVD
added 2023/04/04 12:0 a.m.7 views

OpenBSD 安全漏洞

OpenBSD is a cross-platform, BSD-based, UNIX-like operating system from the Canadian OpenBSD project team. A security vulnerability exists in OpenBSD versions prior to 7.1 errata 024, prior to 7.2 errata 020, and OpenSMTPD 7.0.0-portable, which stems from a security issue with asciiloadsockaddr i...

7.8CVSS7.3AI score0.00279EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2023/04/04 12:0 a.m.5 views

PT-2023-22230 · Unknown +2 · Opensmtpd Portable +2

Name of the Vulnerable Software and Affected Versions: OpenBSD versions prior to 7.1 errata 024 OpenBSD versions prior to 7.2 errata 020 OpenSMTPD Portable versions prior to 7.0.0-portable commit f748277 Description: The issue can cause ascii load sockaddr in smtpd to abort upon a connection from...

7.8CVSS7.8AI score0.00279EPSS
Exploits0References22
Vulnrichment
Vulnrichment
added 2023/04/04 12:0 a.m.12 views

CVE-2023-29323

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...

6.7AI score0.00279EPSS
Exploits0References9
Cvelist
Cvelist
added 2023/04/04 12:0 a.m.21 views

CVE-2023-29323

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...

7.7AI score0.00279EPSS
Exploits0References9
CVE
CVE
added 2023/04/04 12:0 a.m.231 views

CVE-2023-29323

The CVE-2023-29323 entry affects OpenBSD smtpd (OpenBSD before 7.1 errata 024 and 7.2 before errata 020) and OpenSMTPD Portable before the patched commit f748277 (OpenSMTPD portable), where ascii_load_sockaddr can abort on a connection from a local, scoped IPv6 address. This is a local attack wit...

7.8CVSS7.4AI score0.00279EPSS
Exploits0References10Affected Software2
Debian CVE
Debian CVE
added 2023/04/04 12:0 a.m.28 views

CVE-2023-29323

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...

7.8CVSS7.5AI score0.00279EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:3 p.m.84 views

K34931053: OpenSMTPD vulnerability CVE-2020-7247

Security Advisory Description smtpmailaddr in smtpsession.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This affects the...

10CVSS9.5AI score0.98946EPSS
Exploits27
SUSE CVE
SUSE CVE
added 2023/02/15 5:13 a.m.2 views

SUSE CVE-2015-7687

Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote attackers to cause a denial of service crash or execute arbitrary code via vectors involving reqcavrfysmtp and reqcavrfymta...

9.8CVSS7.9AI score0.04094EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:1 a.m.4 views

SUSE CVE-2020-7247

smtpmailaddr in smtpsession.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This affects the "uncommented" default configuration...

10CVSS9.6AI score0.98946EPSS
Exploits27References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.5 views

SUSE CVE-2020-35679

smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, which might allow attackers to trigger a "very significant" memory leak via messages to an instance that performs many regex lookups...

7.5CVSS7.4AI score0.02835EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.3 views

SUSE CVE-2020-35680

smtpd/lkafilter.c in OpenSMTPD before 6.8.0p1, in certain configurations, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted pattern of client activity, because the filter state machine does not properly maintain the I/O channel between th...

7.5CVSS7.1AI score0.03578EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-4875-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.98946EPSS
Exploits41References4
RedhatCVE
RedhatCVE
added 2022/05/20 10:35 p.m.47 views

CVE-2020-8793

OpenSMTPD before 6.6.4 allows local users to read arbitrary files e.g., on some Linux distributions because of a combination of an untrusted search path in makemap.c and race conditions in the offline functionality in smtpd.c...

7.8CVSS3.9AI score0.009EPSS
Exploits4References1
VulnCheck KEV
VulnCheck KEV
added 2022/03/25 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-7247

smtpmailaddr in smtpsession.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session...

10CVSS7.6AI score0.98946EPSS
Exploits27References1
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/25 12:0 a.m.29 views

OpenSMTPD Remote Code Execution Vulnerability

smtpmailaddr in smtpsession.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session...

10CVSS7.5AI score0.98946EPSS
In wildExploits27
GithubExploit
GithubExploit
added 2021/06/19 7:34 a.m.213 views

Exploit for Improper Handling of Exceptional Conditions in Openbsd Opensmtpd

CVE 2020-7247 PoC exploit for Op...

10CVSS9.7AI score0.98946EPSS
Exploits27
Tenable Nessus
Tenable Nessus
added 2021/05/27 12:0 a.m.34 views

GLSA-202105-12 : OpenSMTPD: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202105-12 OpenSMTPD: Multiple vulnerabilities Multiple vulnerabilities have been discovered in OpenSMTPD. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by connecting to the SMTP listen...

7.5CVSS7.3AI score0.03578EPSS
Exploits0References3
Rows per page
Query Builder