Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-33515

Опубликовано: 28 июн. 2021
Источник: ubuntu
Приоритет: medium
CVSS2: 5.8
CVSS3: 4.8

Описание

The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. Sensitive information can be redirected to an attacker-controlled address.

РелизСтатусПримечание
bionic

not-affected

code not present
devel

released

2.3.13+dfsg1-1ubuntu2
esm-infra-legacy/trusty

not-affected

code not present
esm-infra/bionic

not-affected

code not present
esm-infra/focal

released

1:2.3.7.2-1ubuntu3.4
esm-infra/xenial

not-affected

code not present
focal

released

1:2.3.7.2-1ubuntu3.4
groovy

released

1:2.3.11.3+dfsg1-2ubuntu0.2
hirsute

released

1:2.3.13+dfsg1-1ubuntu1.1
impish

released

2.3.13+dfsg1-1ubuntu2

Показывать по

Ссылки на источники

5.8 Medium

CVSS2

4.8 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-33515

CVSS3: 4.2
redhat
больше 4 лет назад

The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. Sensitive information can be redirected to an attacker-controlled address.

nvd логотип

CVE-2021-33515

CVSS3: 4.8
nvd
больше 4 лет назад

The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. Sensitive information can be redirected to an attacker-controlled address.

msrc логотип

CVE-2021-33515

CVSS3: 4.8
msrc
около 4 лет назад

The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. Sensitive information can be redirected to an attacker-controlled address.

debian логотип

CVE-2021-33515

CVSS3: 4.8
debian
больше 4 лет назад

The submission service in Dovecot before 2.3.15 allows STARTTLS comman ...

rocky логотип

RLSA-2022:1950

rocky
больше 3 лет назад

Moderate: dovecot security update

5.8 Medium

CVSS2

4.8 Medium

CVSS3