In Dovecot before 2.3.10.1, remote unauthenticated attackers can crash the lmtp or submission process by sending mail with an empty localpart.
References
Configurations
History
07 Nov 2023, 03:14
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2020-05-18 15:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-10967
Mitre link : CVE-2020-10967
CVE.ORG link : CVE-2020-10967
JSON object : View
Products Affected
dovecot
- dovecot
CWE
CWE-20
Improper Input Validation