RSS   Vulnerabilities for 'Dovecot'   RSS

2021-06-28
 
CVE-2021-29157

CWE-22
 

 
Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver.

 
 
CVE-2020-28200

CWE-697
 

 
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension.

 
 
CVE-2021-33515

CWE-77
 

 
The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. Sensitive information can be redirected to an attacker-controlled address.

 
2021-01-04
 
CVE-2020-25275

CWE-20
 

 
Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a crafted email message with certain choices for ten thousand MIME parts.

 
 
CVE-2020-24386

NVD-CWE-Other
 

 
An issue was discovered in Dovecot before 2.3.13. By using IMAP IDLE, an authenticated attacker can trigger unhibernation via attacker-controlled parameters, leading to access to other users' email messages (and path disclosure).

 
2020-08-12
 
CVE-2020-12674

CWE-125
 

 
In Dovecot before 2.3.11.3, sending a specially formatted RPA request will crash the auth service because a length of zero is mishandled.

 
 
CVE-2020-12673

CWE-125
 

 
In Dovecot before 2.3.11.3, sending a specially formatted NTLM request will crash the auth service because of an out-of-bounds read.

 
 
CVE-2020-12100

CWE-674
 

 
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.

 
2020-05-18
 
CVE-2020-10967

CWE-20
 

 
In Dovecot before 2.3.10.1, remote unauthenticated attackers can crash the lmtp or submission process by sending mail with an empty localpart.

 
 
CVE-2020-10958

CWE-416
 

 
In Dovecot before 2.3.10.1, a crafted SMTP/LMTP message triggers an unauthenticated use-after-free bug in submission-login, submission, or lmtp, and can lead to a crash under circumstances involving many newlines after a command.

 


Copyright 2022, cxsecurity.com

 

Back to Top