| Max CVSS | 5.0 | Min CVSS | 4.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-12100 | 5.0 |
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
|
29-10-2022 - 02:39 | 12-08-2020 - 16:15 | |
| CVE-2020-25275 | 5.0 |
Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a crafted email message with certain choices for ten thousand MIME parts.
|
02-09-2022 - 15:46 | 04-01-2021 - 17:15 | |
| CVE-2020-24386 | 4.9 |
An issue was discovered in Dovecot before 2.3.13. By using IMAP IDLE, an authenticated attacker can trigger unhibernation via attacker-controlled parameters, leading to access to other users' email messages (and path disclosure).
|
02-09-2022 - 15:45 | 04-01-2021 - 17:15 | |
| CVE-2020-12100 | 5.0 |
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
|
25-09-2020 - 19:15 | 12-08-2020 - 16:15 |