CVE-2020-28200

Опубликовано: 21 июн. 2021

Источник: redhat

CVSS3: 4.3

EPSS Низкий

Описание

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	dovecot	Out of support scope
Red Hat Enterprise Linux 7	dovecot	Will not fix
Red Hat Enterprise Linux 8	dovecot	Will not fix
Red Hat Enterprise Linux 9	dovecot	Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=1973611dovecot: insufficient protection against excessive resource usage allows for a DoS

EPSS

Процентиль: 77%

0.01023

Низкий

4.3 Medium

CVSS3

Связанные уязвимости

CVE-2020-28200

CVSS3: 4.3

ubuntu

больше 4 лет назад

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension.

CVE-2020-28200

CVSS3: 4.3

nvd

больше 4 лет назад

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension.

CVE-2020-28200

CVSS3: 4.3

msrc

около 4 лет назад

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption as demonstrated by a situation with a complex regular expression for the regex extension.

CVE-2020-28200

CVSS3: 4.3

debian

больше 4 лет назад

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource ...

GHSA-f6jc-wwhw-gpq7

CVSS3: 4.3

github

больше 3 лет назад

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension.

EPSS

Процентиль: 77%

0.01023

Низкий

4.3 Medium

CVSS3