Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2021-29157

Опубликовано: 21 июн. 2021
Источник: redhat
CVSS3: 6.3
EPSS Низкий

Описание

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver.

A flaw was found in dovecot where it did not properly parse the kid and azp fields in JWT tokens. This flaw allows a local attacker to bypass dovecot's authentication, and access a user's emails. The highest threat from this vulnerability is to confidentiality and integrity.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6dovecotOut of support scope
Red Hat Enterprise Linux 7dovecotNot affected
Red Hat Enterprise Linux 8dovecotNot affected
Red Hat Enterprise Linux 9dovecotNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1973609dovecot: local attacker can login as any user and access their emails

EPSS

Процентиль: 29%
0.00105
Низкий

6.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2021-29157

CVSS3: 7.5
ubuntu
больше 4 лет назад

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver.

nvd логотип

CVE-2021-29157

CVSS3: 7.5
nvd
больше 4 лет назад

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver.

msrc логотип

CVE-2021-29157

CVSS3: 5.5
msrc
около 4 лет назад

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver.

debian логотип

CVE-2021-29157

CVSS3: 7.5
debian
больше 4 лет назад

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with acce ...

github логотип

GHSA-89g9-v7q6-px25

github
больше 3 лет назад

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver.

EPSS

Процентиль: 29%
0.00105
Низкий

6.3 Medium

CVSS3