Cyrusimap Cyrus Imap vulnerabilities
2 known vulnerabilities affecting cyrusimap/cyrus_imap.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2024-34055MEDIUMCVSS 6.5fixed in 3.8.3v3.10.02024-06-05
CVE-2024-34055 [MEDIUM] CWE-770 CVE-2024-34055: Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbound
Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command.
nvd
CVE-2017-12843MEDIUMCVSS 6.5≤ 3.0.22017-08-22
CVE-2017-12843 [MEDIUM] CWE-20 CVE-2017-12843: Cyrus IMAP before 3.0.3 allows remote authenticated users to write to arbitrary files via a crafted
Cyrus IMAP before 3.0.3 allows remote authenticated users to write to arbitrary files via a crafted (1) SYNCAPPLY, (2) SYNCGET or (3) SYNCRESTORE command.
nvd