Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GnomeEvolution-data-server

3 matches found

CVE
CVEadded 2020/07/17 3:30 p.m.231 views

CVE-2020-14928

CVE-2020-14928 affects evolution-data-server (EDS) up to version 3.36.3. The issue is a STARTTLS buffering flaw in SMTP/POP3: when a server sends a begin TLS response, EDS reads extra data and evaluates it in a TLS context, enabling potential response injection with impact on integrity as per the...

5.9CVSS5.4AI score0.06354EPSS
CVE
CVEadded 2020/07/29 5:59 p.m.203 views

CVE-2020-16117

CVE-2020-16117 affects GNOME evolution-data-server, prior to 3.35.91. A malicious server can crash the mail client by sending an invalid CAPABILITY line during a connection, causing a NULL pointer dereference in the imapx_free_capability/imapx_connect_to_server path. The issue is a client-side cr...

5.9CVSS5.4AI score0.01593EPSS
CVE
CVEadded 2009/03/14 6:0 p.m.79 views

CVE-2009-0582

CVE-2009-0582 concerns Evolution Data Server’s Evolution/evolution-data-server NTLM authentication. The ntlm_challenge function in Camel’s NTLM SASL implementation does not validate that the length field in an NTLM type 2 challenge is consistent with the packet data, allowing a remote server to c...

5.8CVSS6.4AI score0.03432EPSS