📦 Dovecot

This path traversal vulnerability in Dovecot allows attackers with local filesystem access to bypass OAuth2 authentication by tricking the system into using attacker-controlled JWT validation keys. It...

This vulnerability in Dovecot email server allows remote attackers to cause denial of service by sending specially crafted emails with deeply nested MIME parts. The uncontrolled recursion consumes sys...

CVE-2020-12674 is a buffer overflow vulnerability in Dovecot's authentication service where a specially crafted RPA request with zero length causes a crash due to improper length handling. This affect...

CVE-2020-10957 is a NULL pointer dereference vulnerability in Dovecot email server that allows unauthenticated attackers to crash submission-login, submission, or LMTP services by sending malformed pa...