Lucene search
+L

10 matches found

Ubuntu
Ubuntu
added 2026/03/31 9:48 a.m.8 views

USN-8136-1: Dovecot vulnerabilities

It was discovered that Dovecot incorrectly handled invalid base64 SASL data. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 25.10. CVE-2025-59028 It was discovered that Dovecot script decode2text.sh incorrectly handled zip files. An attacke...

8.2CVSS6AI score0.0079EPSS
Exploits7
NVD
NVD
added 2026/03/27 9:16 a.m.5 views

CVE-2026-24031

Dovecot SQL based authentication can be bypassed when authusernamechars is cleared by admin. This vulnerability allows bypassing authentication for any user and user enumeration. Do not clear authusernamechars. If this is not possible, install latest fixed version. No publicly available exploits...

8.2CVSS0.00395EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/27 8:10 a.m.39 views

CVE-2026-24031

Dovecot SQL based authentication can be bypassed when authusernamechars is cleared by admin. This vulnerability allows bypassing authentication for any user and user enumeration. Do not clear authusernamechars. If this is not possible, install latest fixed version. No publicly available exploits...

7.7CVSS0.00395EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/27 8:10 a.m.2 views

CVE-2026-24031

Dovecot SQL based authentication can be bypassed when authusernamechars is cleared by admin. This vulnerability allows bypassing authentication for any user and user enumeration. Do not clear authusernamechars. If this is not possible, install latest fixed version. No publicly available exploits...

8.2CVSS5.9AI score0.00395EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2021/10/25 8:19 a.m.100 views

Hackers Exploited Popular BillQuick Billing Software to Deploy Ransomware

Cybersecurity researchers on Friday disclosed a now-patched critical vulnerability in multiple versions of a time and billing system called BillQuick that's being actively exploited by threat actors to deploy ransomware on vulnerable systems. CVE-2021-42258, as the flaw is being tracked as,...

9.8CVSS0.6AI score0.73269EPSS
Exploits3
The Hacker News
The Hacker News
added 2016/09/27 4:47 a.m.28 views

Facebook releases Osquery Security Tool for Windows

OSquery, an open-source framework created by Facebook that allows organizations to look for potential malware or malicious activity on their networks, was available for Mac OS X and Linux environments until today. But now the social network has announced that the company has developed a Windows...

6.6AI score
Exploits0
ThreatPost
ThreatPost
added 2015/11/09 12:13 p.m.10 views

SAP HANA Security Patches

Critical business applications such as SAP and Oracle ERP products process and store the Fortune 2000’s most critical data, yet spur relatively little concern when it comes to security vulnerabilities. That trend seems to be reversing itself, given the spate of disclosures and high-profile...

0.3AI score
Exploits0References4
ThreatPost
ThreatPost
added 2014/10/29 1:0 p.m.93 views

Facebook Releases osquery to Open Source

Facebook is in a giving mood today. The social networking giant announced today that it will release to open source a framework that detects and logs state changes in an operating system likely caused by an attack or performance meltdown. It also announced that it will hand out up to $300,000 nex...

9.3CVSS8.5AI score0.81628EPSS
Exploits22References3
The Hacker News
The Hacker News
added 2011/06/30 2:56 p.m.12 views

TDSS rootkit infects 1.5 million US computers

TDSS rootkit infects 1.5 million US computers Millions of PCs around the world infected by the dangerous TDSS 'super-malware' rootkit as part of a campaign to build a giant new botnet. The report is presented by researchers from security firm Kaspersky Lab. TDSS also known as 'TDL' and sometimes ...

6.9AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2008/12/21 12:0 a.m.47 views

phpCollab: Multiple vulnerabilities

Background phpCollab is a web-enabled groupware and project management software written in PHP. It uses SQL-based database backends. Description Multiple vulnerabilities have been found in phpCollab: rgod reported that data sent to general/sendpassword.php via the loginForm parameter is not...

10CVSS8.4AI score0.06164EPSS
Exploits1
Rows per page
Query Builder