📦

cyrus_imap

Vendor: cyrusimap

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 1 Remote Access
Total CVEs 18 Total Indexed
Avg. EPSS 0.26% Exploit Prob.
Latest CVE CVE-2024-34055 Jun 05

Security Vulnerability Index

Page 1 / 2
6.5 CVSS
CVE-2024-34055
RCE

Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command.

EPSS: 0.29%
6.5 CVSS
CVE-2017-12843

Cyrus IMAP before 3.0.3 allows remote authenticated users to write to arbitrary files via a crafted (1) SYNCAPPLY, (2) SYNCGET or (3) SYNCRESTORE command.

EPSS: 0.23%